Home Latest Cyber Security News | Network Security Hacking Another iPhone WiFi Vulnerability Found – This One Can Permanently Disable WiFi
Latest Cyber Security News | Network Security HackingNewsVulnerabilities

Another iPhone WiFi Vulnerability Found – This One Can Permanently Disable WiFi

by Abeerah Hashim
written by Abeerah Hashim
iPhone WiFi vulnerability

Days after an iPhone WiFi bug made it to the news, the same researcher found another vulnerability. This one, however, can disable the WiFi functionality almost permanently – which means it’ll require efforts to restore the device.

iPhone WiFi Vulnerability Permanently Disabling WiFi

Recently, Carl Schou has found another vulnerability that breaks the WiFi functionality of an iPhone.

Disclosing about it in his tweet, Schou stated that the glitch appeared upon renaming the WiFi SSID as “%secretclub%power” and trying to connect to it.

While this is similar to his previous findings where the bug appeared due to the SSID “%p%s%s%s%s%n” the difference lies in the impact of the two.

Specifically, restoring the device from the buggy state was easy with a quick network settings reset. However, after testing with the second bug, Schou couldn’t retrieve the iPhone’s WiFi functionality by resetting network settings.

Eventually, Schou had to contact the Apple device security team as it became impossible to restore the device.

How To Fix Disabled WiFi?

Once again, the problem seemingly lies with the “%s%p” in the WiFi SSID. Though, this is different from the previous glitch where the third “%s” appearance triggered the bug. Here, the SSID has only one appearance of “%s” at the beginning followed by a “%p” in the middle of the name.

According to the analysis by Saif and Alex Skalozub, the problem basically lies with the presence of “%s” in the SSID. However, what made the second discovery worse was the presence of a previous malicious SSID saved within the networks.

In simple words, what triggered this “permanent dos” was the existence of the previous malicious SSID “%p%s%s%s%s%n” within Schou’s device. Hence, the two saved malicious SSIDs made it impossible to restore the WiFi functionality by network settings reset.

To recover from this state, it requires the user to backup the device, and then modify the backup by manually deleting the malicious entries from the com.apple.wifi.known-networks.plist.

When trying this workaround, Saif had to use iMazing to fix the backup file corrupted due to the modification. Restoring the backup then enabled the WiFi again.

Following this discovery, Skalozub even put up a quick tool online that would automatically remove bad SSIDs.

Let us know your thoughts in the comments.

Abeerah has been a passionate blogger for several years with a particular interest towards science and technology. She is crazy to know everything about the latest tech developments. Knowing and writing about cybersecurity, hacking, and spying has always enchanted her. When she is not writing, what else can be a better pastime than web surfing and staying updated about the tech world! Reach out to me at: [email protected]

You may also like

Xiid SealedTunnel: Unfazed by Yet Another Critical Firewall...

Personal Data Exposed in Massive Global Hack: Understanding...

Guardz Welcomes SentinelOne as Strategic Partner and Investor...

Invision Community Vulnerabilities Risk E-Commerce Websites

Microsoft April Patch Tuesday Fixes Dozens of RCE...

Match Systems publishes report on the consequences of...

Cypago Announces New Automation Support for AI Security...

LayerSlider WordPress Plugin Vulnerability Affected Thousands Of Websites

OWASP Disclosed Data Breach Affecting Old Members

Center Identity Launches Patented Passwordless Authentication for Businesses