Just yesterday, Apple started seeding the iOS 11.1 update which comes with many bug fixes, over 70 new emoji, and the return of 3D app switcher for iPhone 6s and above. However just a day after the rollout of the stable iOS 11.1, security researches were successful in exploiting the OS. Researchers managed to exploit bugs through the Wi-Fi and on Safari web browser.
This bug exploitation took place at the first day of the popular Mobile Pwn2Own2017 contest. After having updated an iPhone 7 to the latest iOS 11.1, Tencent Keen Security Lab managed to get through a Wi-Fi exploit. As reported by ZDI, the team gained code execution using four bugs and in doing so installed their app on the iPhone 7. They were also able to make the app persist on the iPhone 7. You can see in the screenshot below the “KeenLab” app that they could install on the iPhone 7.
Tencent Keen Security Lab didn’t stop here as they moved on to target Safari browser. Using just two bugs, the security researchers managed to exploit in a matter of just a few seconds. Exploiting one bug in the Safari browser, and the other in a system service, they were able to keep their “KeenLab” app yet again. Another security researcher, Richard Zhu also targeted Safari using one bug in the browser and an out-of-bounds bug which helped him escape the sandbox and finally execute the code.
Apple is yet to respond on the vulnerabilities in iOS 11.1. Also, it isn’t known when Apple will rollout bug fixes for iOS devices. iOS 11.1 itself has many bug fixes for existing problems like pictures blurring, live photo effects playing slow, among others. Apple also fixed issues like cleared Mail notifications reappearing on Lock screen. Mobile Pwn2Own 2017 is ongoing with possibly more vulnerabilities being exposed again on iOS.