Apple iOS legacy-diagnostics Privilege Escalation Vulnerability

ID ZDI-16-679
Type zdi
Reporter 7cd6cbc56470722cd7dea01561796431
Modified 2017-06-22T00:00:00


This vulnerability allows remote attackers to escalate privileges on vulnerable installations of Apple iOS. User interaction is required to exploit this vulnerability in that the target must connect to a WiFi access point. The specific flaw exists within the usage of the legacy-diagnostics protocol handler. The issue lies in the launching of a diagnostic application that is able to render webpages outside of the sandbox. An attacker can leverage this vulnerability to escalate privileges outside the context of the sandbox.