A Cisco researcher found the vulnerabilities of iOS, OS X, Watch OS and tvOS and said that these operating systems are vulnerable to malware that has been embedded in an image file.
The malware can run in the OS remaining undetected to the user, from which the attacker might have been able to remote code execution on the infected computer.
How can malware infect the OS?
Cisco researcher, Tyler Bohan said that the user could receive the malicious file via email, MMS. Infect, visiting a malicious Webpage can even infect the OS.The remote code execution vulnerabilities were found in the way Apple operating systems access image data using APIs - specifically, Apple Core Graphics API, Scene Kit, and Image I/O.What types of image formats can exploit the vulnerabilities?
Image formats like, tiff, bmp, dae and Open EXR can be used to exploit the vulnerabilities. Image formats like tiff and bmp can be used to exploit ios,OS X, watchOS and tvOS while dae and Open EXR image format can only exploit OSX.Fortunately, The Cupertino-based company fixed all the vulnerabilities of above-mentioned apple OS in the latest versions iOS 9.3.3, tvOS 9.2.2, watchOS 2.2.2, and OS X El Capitan v10.11.6.
Tyler Bohan said on the intelligence blog that these types of vulnerabilities are really dangerous as image file are very easy and excellent way for attacking because it can be distributed over the internet very easily. Or it can also send to be the victim very easily. So this vulnerability is very dangerous.
Conclusion.
So if you are the user of the older versions, I will highly recommend you to upgrade your OS immediately as soon as possible to remain safe from this vulnerability.
Thanx for reading this article.
0 Comment to "You should update your Apple ios and OS X versions immediately"
Post a Comment