toggle

AAPL Stock: 112.01 ( -0.53 )

Printed from http://www.macnn.com

Bug in OS X, iOS can cause crashes, fixed in next releases

updated 02:30 am EDT, Fri August 30, 2013

String of Arabic characters flaw mostly harmless, but annoying

A string of certain Arabic characters sent to devices running OS X 10.8.x and iOS 6.x can crash applications and make the Messages app unusable and cause both Safari and Chrome to crash. The problem has been fixed in beta releases of iOS 7 and OS X 10.9 Mavericks, but at present there is no official patch for the problem in the current releases of OS X and iOS. An unofficial fix has been made available for jailbroken devices.

Because the string of characters causes both the recipient's and sender's machines to experience the issues -- which include the aforementioned freezes and crashes as well as not allowing scanning of SSIDs for wireless networks -- the chances of being on the receiving end of the attack are very low. However, some have claimed that Apple has known about the flaw for six months already and has yet to protect the current or previous systems, 9to5Mac reports.

Hacker Filippo Bigarella has released a solution for the flaw for iOS's Mobile Safari on jailbroken devices, as well as a "dumb" patch for Webkit upon which all other iOS browsers rely. He says it is "not a definite solution, but it'll do" until Apple releases an update that fixes the issue.

The flaw doesn't allow malicious attacks or remote access, but just causes application freezes and crashes. The jailbreak fix allows apps normally affected by the problem to continue working.




by MacNN Staff

POST TOOLS:

TAGS :

toggle

Comments

  1. The Vicar

    Junior Member

    Joined: 07-01-09

    I've seen a page which claimed to contain the string, and it didn't crash Safari 6.0.5 on OS X 10.8.4. Then again, the actual bug report doesn't claim that non-mobile Safari is vulnerable, just Messages, so maybe it isn't.

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

Dell AD211 Bluetooth speaker

For all of the high-priced, over-engineered Bluetooth speakers in the electronics market, there is still room for mass-market solution ...

VisionTek 128GB USB Pocket SSD

USB flash drives dealt the death blow to both the floppy and Zip drives. While still faster than either of the old removable media, sp ...

Kodak PixPro SL10 Smart Lens Camera

Smartphone imagery still widely varies. Large Megapixel counts don't make for a good image, and the optics in some devices are lackin ...

toggle

Most Commented