News Targeted


Category: Apple|Jan 4, 2022 | Author: Admin

Long names are a security issue for Apple users

Share on

A bug in iOS 14 and older versions causes HomeKit to crash, and more.

Long device names are enough to create big problems


All that is needed is to use a very long name on a HomeKit device, and by very long we mean 500,000 or more in both iOS and iPadOS.

 

If a device has such a long name with iOS 14 or older, a reboot may cause the device to stop working. It also does not help that HomeKit devices with too long names are updated via iCloud and sent automatically to iPhones and iPads.

 

The error is named "doorLock"
Security researcher Trevor Spiniolas (who aptly dubbed the "doorLock" bug) also warns that hackers could be exploited by hackers to feed devices on the network with Trojans and other ugliness.

 

Another problem is that the device connected to the HomeKit home will find that the Home app does not work at all. It is even worse if the user has HomeKit activated in the quick control panel: then iOS will stop working, or be very slow to accept input from the user.

 

Also, a USB connection will not be connected if a device is delayed, which means that a delayed user will not be able to retrieve local data that has not been backed up.

 

 

Apple is aware of the bug but has not sealed it yet
Starting with iOS 15 (or 15.1), Apple has introduced a limit on how long the names of HomeKit-enabled products can be. As Spiniolas reveals, if you accept an invitation to a HomeKit home with an older version, the error also occurs with iOS 15.2.

 

Hackers will be able to exploit the error by sending invitations to home (also works if the recipient does not have a HomeKit device), or e.g. that an app with access to HomeKit data changes to long names.

 

If you are affected, you must take a complete recovery of the device and immediately disable Home synchronization with iCloud.

 

The bug was discovered in August 2021 and Apple was notified, but they have not yet fixed the bug. Apple is said to have stated that a bug fix will come early this year, but after they did not roll out a bug fix at the end of 2021, Spiniolas warned that he would reveal the hole, which he has done.

Sponsored Ads:

Comments:

< Next article

Previous article >


Microsoft is ending Edge support on computers without SSE3

Category: Microsoft|May 18, 2024 | Author: Admin

Gratulerer med 17. mai!

Category: General|May 17, 2024 | Author: Admin

Now many can try Android 15

Category: Google|May 16, 2024 | Author: Admin

Apple has released iOS 17.5

Category: Apple|May 15, 2024 | Author: Admin

Toshiba demonstrates 30TB+ HDDs using HAMR and MAMR technologies — customer sampling scheduled for 2025

Category: IT|May 14, 2024 | Author: Admin

Microsoft’s free PC optimizer makes it easier to free up storage space

Category: Microsoft|May 13, 2024 | Author: Admin

Stack Overflow Users Are Revolting Against an OpenAI Deal

Category: IT|May 12, 2024 | Author: Admin

ChatGPT is probably coming to the iPhone

Category: Apple|May 11, 2024 | Author: Admin

April Windows Server updates also cause crashes, reboots

Category: Microsoft|May 10, 2024 | Author: Admin

Apple skin braided after advertising stunt

Category: Apple|May 9, 2024 | Author: Admin

"RTX 5080 coming this fall"

Category: IT|May 8, 2024 | Author: Admin

Sorry, but it will stop on October 14, 2025

Category: Microsoft|May 7, 2024 | Author: Admin

Microsoft announces new security services and features for AI deployments

Category: Microsoft|May 6, 2024 | Author: Admin

Can force Facebook to allow it

Category: IT|May 5, 2024 | Author: Admin

Siri can no longer tell the clock

Category: Apple|May 4, 2024 | Author: Admin
more