SoylentNews

A New CSS-Based Web Attack Will Crash and Restart Your iPhone

posted by martyb on Tuesday September 18 2018, @09:16AM   
from the and-others dept.

MrPlow writes:

Submitted via IRC for Fnord666

A security researcher has found a new way to crash and restart any iPhone — with just a few lines of code. Sabri Haddouche tweeted a proof-of-concept webpage with just 15 lines of code.

Sabri Haddouche tweeted a proof-of-concept webpage with just 15 lines of code which, if visited, will crash and restart an iPhone or iPad. Those on macOS may also see Safari freeze when opening the link.

Source: https://techcrunch.com/2018/09/15/a-new-css-based-web-attack-will-crash-and-restart-your-iphone/

---

Original Submission

• Everything runs as root on iOS Everything runs as root on iOS (Score: 4, Insightful) by MichaelDavidCrawford on Tuesday September 18 2018, @08:45PM (1 child)

  by MichaelDavidCrawford (2339) <mdcrawford@gmail.com> on Tuesday September 18 2018, @08:45PM (#736720) Homepage Journal

  Yes there is the sandbox but security having to do with the user ID is entirely unimplemented

  It's easy to crash Linux with a root user space program. try writing an MP3 of "American Woman" into /dev/kmem

  --
  Yes I Have No Bananas. [gofundme.com]

  Parent

  Starting Score:	1		point
  Moderation		+2
  Insightful=2, Total=2
  Extra 'Insightful' Modifier		0
  Karma-Bonus Modifier		+1
  Total Score:		4

• Re:Everything runs as root on iOS (Score: 2) by Subsentient on Wednesday September 19 2018, @01:49PM

  by Subsentient (1111) on Wednesday September 19 2018, @01:49PM (#737024) Homepage Journal

  I have /dev/kmem disabled because it's considered a security hole. Partly for reasons like that. >.

  --
  "It is no measure of health to be well adjusted to a profoundly sick society." -Jiddu Krishnamurti

  Parent