AirBorne: Wormable Zero-Click RCE in Apple AirPlay Puts Billions of Devices at Risk

207

•

AirBorne: Wormable Zero-Click RCE in Apple AirPlay Puts Billions of Devices at Risk (www.oligo.security)

From the post:

>Oligo Security Research has discovered a new set of vulnerabilities in Apple’s AirPlay Protocol and the AirPlay Software Development Kit (SDK), which is used by third-party vendors to integrate AirPlay into third-party devices. The vulnerabilities enable an array of attack vectors and outcomes, including: Zero-Click RCE One-Click RCE Access control list (ACL) and user interaction bypass Local Arbitrary File Read Sensitive information disclosure Man-in-the-middle (MITM) attacks Denial of service (DoS) These vulnerabilities can be chained by attackers to potentially take control of devices that support AirPlay – including both Apple devices and third-party devices that leverage the AirPlay SDK.

Archive: https://archive.today/TKrtW From the post: >>Oligo Security Research has discovered a new set of vulnerabilities in Apple’s AirPlay Protocol and the AirPlay Software Development Kit (SDK), which is used by third-party vendors to integrate AirPlay into third-party devices. The vulnerabilities enable an array of attack vectors and outcomes, including: Zero-Click RCE One-Click RCE Access control list (ACL) and user interaction bypass Local Arbitrary File Read Sensitive information disclosure Man-in-the-middle (MITM) attacks Denial of service (DoS) These vulnerabilities can be chained by attackers to potentially take control of devices that support AirPlay – including both Apple devices and third-party devices that leverage the AirPlay SDK.

(post is archived)