Julie Clover
Researchers in the Oligo cybersecurity company today outlined in general terms of the AirPlay vulnerability series, which affect millions of Apple (via Wired) and accessories that are connected to Apple devices. While Apple turned to disadvantages in security updates that have appeared over the past few months, some third -party devices that support & zwnj; AirPlay & Zwnj; remain vulnerable. Vulnerabilities allowed attackers to take control of the devices that support & zwnj; AirPlay & Zwnj; To spread malware to other devices on any local device to which the infected device is connected. The attacker should be in the same Wi-Fi network as the alleged victim, putting public places for Wi-Fi, enterprises and other areas with high traffic, undergoing greater risk. Disadvantages can lead to “complex attacks related to espionage, extorting programs, attacks of supply chains and many others.” Vulnerabilities can be used independently or chain for “a variety of possible attack vectors”, such as remote code execution, bypassing interaction with the user, refusing to attack the service, and a person’s attack on average and much more. Oligo found 23 separate deficiency of security, and Apple released 17 CVES to solve them. Information about each vulnerability is set forth on the web shat Oligo. Apple also launched corrections for his Zwnj; AirPlay & Zwnj; SDK for third -party manufacturers. This attack vector will require the attacker to be directly in the car and connected either to the Bluetooth car, or in the car USB port, which makes it unlikely. Other devices that support & zwnj; AirPlay & Zwnj; It can be vulnerable, so users must take steps such as shutdown & zwnj; AirPlay & Zwnj; Receiver function on Mac and restriction & zwnj; AirPlay & Zwnj; The current user instead of all users. Devices that are still vulnerable to attack. Because & zwnj; AirPlay & Zwnj; It is supported in such a wide range of devices, there are many years that will take years to fix it, or they will never be corrected, ”he said.
tag: airplay [52 comments]
