Skip Ribbon Commands
Skip to main content
Computer Emergency Response Team of Mauritius (CERT-MU)

VN-2019-31


Vulnerability in Apple Airdrop
Severity Rating: Medium
Systems Affected:
  • Apple Airdrop
Description
A vulnerability has been identified in Apple Airdrop and this could be exploited by remote attackers to render iPhones and iPads inoperable. The vulnerability could also trigger a type of denial of service attack, thus allowing an attacker to infinitely spam all nearby iPhones and iPads with AirDrop share popup notifications. This share popup blocks the UI so the device owner will be able to do anything on the device except Accept/Decline the popup, which will keep reappearing. It will persist even after locking/unlocking the device.
Solution
Users are advised to apply updates.
More information is available on:
Vendor Information
Apple
References
Threatpost
Apple Security Bulletin
Postal address
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street
Port Louis