Kaspersky Lab: Darwin Nuke's vulnerability to OS X and iOS

Her researchers Lab they discovered a vulnerability in its core Darwin, an open-source component in iOS and OS X. Vulnerability «Darwin Nuke» leaves the devices with OS X 10.10 and iOS 8 exposed to remote DoS (Denial of Service) attacks, which can damage devices and affect the corporate networks they are connected to. wounded apple Darwin Nuke Darwin Nuke Darwin Nuke

Experts call users to update their devices by installing OS X versions 10.10.3 MriOS8.3, which are already available to the public and no longer include vulnerability Darwin Nuke.

Vulnerability analysis Darwin Nuke from Kaspersky Lab revealed that the devices affected by the threat include those that have 64-bit and running iOS 8, including iPhone 5S, iPhone 6, iPhone 6 Plus, iPad Air, iPad Air 2, iPad mini 2, and iPad mini 3.

Exploitation of vulnerabilityDarwin Nuke"Is done when processing a specific IP packet with invalid IP options. Attackers can initiate a DoS (Denial of Service) attack on a device running OS X 10.10 or iOS 8 by sending a wrong network packet to the target. After processing the invalid network packet, the system will crash. According to Kaspersky Lab researchers, the system will "crash" if the IP package meets the following requirements:

  • The size of the IP header should be 60 bytes.
  • The size of the payload IP should be less than or equal to 65 bytes.
  • IP options should be incorrect (void size, class, etc.)

"At first glance, it is very difficult to exploit it bug Darwin Nuke, as the conditions to be met by attackers are not insignificant. However, persistent digital criminals can do it and ultimately destroy devices or even affect corporate network activity. The router and firewall usually block incorrectly packets with invalid size choices, but we have discovered several combinations of wrong IP options that are able to go through router. We would like to warn all OS X 10.10 and iOS 8 users to update their devices and switch to OS X 10.10.3 and iOS 8.3 ", said Anton Ivanov, Kaspersky Lab's Senior Malware Analyst.

Τα προϊόντα της Kaspersky Lab προστατεύουν τα λειτουργικά συστήματα OS X από την ευπάθεια “Darwin Nuke” με τη λειτουργία “ Attack Blocker”. Επίσης, η λύση Kaspersky Security for Mac 15.0 detects this threat under the codename “DoS.OSX.Yosemite.ICMP.Error.exploit”.

To enhance the protection of Mac devices, Kaspersky Lab recommends users to:

  1. They use a web browser with a proven track record in the immediate fix of security issues.
  2. Update their software and install the necessary patches when updates are available
  3. They use password managers that help counter phishing attacks.
  4. Install a reliable security solution.

Additional iPhone security tips are available at: http://blog.kaspersky.com/iphone-maximum-security-tips/. More information is available at Securelist.com. Finally, at Official Blog of Eugene Kaspersky you can find a recent post regarding threats against Mac computers.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by Dimitris

Dimitris hates on Mondays .....

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).