Security Alert (A16-10-11): Multiple Vulnerabilities in Apple iOS
27 October 2016
Apple has released software update fixing 14 vulnerabilities in iOS versions prior to iOS 10.1. These vulnerabilities are caused by problems in various iOS components. There are multiple attack vectors, an attacker could entice a user to open a maliciously crafted JPEG file, website or install a malicious application to exploit the vulnerabilities.
iPhone 5 and later
iPad 4 and later
iPod touch (6th generation) and later
A successful attack could lead to information disclosure, overwrite arbitrary files, disclose kernel memory, arbitrary code execution or unexpected system termination.
The product vendor has released iOS 10.1 to address the issues. Users can obtain the updates by using the auto-update mechanism. Users of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.