Network security, Patch management, Vulnerability management

Apple’s iOS 10.3.1 update patched Wifi code execution flaw

Robert AbelApril 4, 2017

Days after releasing the iOS 10.3 patch, Apple has released a new patch, iOS 10.3.1, to correct a code execution flaw that could be exploited via Wi-Fi.

The bug was spotted by Google's Project Zero Team and would allow an attacker within range of a vulnerable device to exploit a stack buffer overflow flaw in iOS and would allow arbitrary code execution on the Wi-Fi, Apple said in the April 3 release.

The flaw affects the chips built into iPhone 5, iPad 4th generation and iPod Touch 6th generation and later devices. Apple said it addressed the stack buffer overflow through improved input validation.

Apple released the iOS 10.3 update which contained patches for 70 vulnerabilities, 18 of which could have been exploited remotely, on March 28.

A beta version of iOS 10.3.2 was also released last week and experts say it will likely go through a few more patches before its mainstream release.

Robert Abel

Vulnerability management

Security vs. Operations – Balancing the Risk – Ross Leo – CSP #114

March 21, 2023

The role of CISO is one filled with challenges and decisions. Frequently, a CISO is faced with having to decide in compromise with Operations, in favor of Operations. This can be a very difficult and risky choice to make - but the ideal of having both get 100% of what they want, or need is not realistic. How to do this? In this session, we discu...

Dish Network suffers massive multi-day outage

Ransomware

Dish customers struggle with service disruptions weeks after ransomware attack

Menghan XiaoMarch 24, 2023

Customers complain that they are still having payment issues and are not able to contact customer service weeks after Dish Network suffered a ransomware attack.

Network security

Health leaders push feds for cybersecurity requirements

Jessica DavisMarch 16, 2023

Bogged down by financial issues and staffing shortages, rural hospitals are in dire need for federal assistance for cybersecurity.

Related Events

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Apple’s iOS 10.3.1 update patched Wifi code execution flaw

Related

Security vs. Operations – Balancing the Risk – Ross Leo – CSP #114

Dish customers struggle with service disruptions weeks after ransomware attack

Health leaders push feds for cybersecurity requirements

Related Events

The Latest Cybercriminal TTPs: How Public-Sector Defenders Can Stay Ahead

Playing network traffic cop in multi-cloud environments: A guide to detecting & restricting lateral movement

Consolidating without compromise: An XDR democast for analysts of all tenure

Get daily email updates