Become a MacRumors Supporter for $25/year with no ads, private forums, and more!

MacRumors

macrumors bot
Original poster
Apr 12, 2001
56,992
19,851


The latest beta for iOS and iPadOS 14.7, released to developers this week, patches a bug that disabled an iPhone's ability to connect to Wi-Fi if a user connected to a specific Wi-Fi network with the name "%p%s%s%s%s%n."

ios-wifi-settings.jpg

In his latest video rounding up the latest changes in the beta, YouTuber Zollotech found that the update has silently patched the bug that caused an iPhone to become unable to connect to Wi-Fi networks.

The bug was discovered on Twitter last month and consisted of an iPhone connecting to a Wi-Fi SSID with the name "%p%s%s%s%s%n." According to user reports, doing so would "permanently disable" an iPhone's Wi-Fi functionality, making the bug rather dangerous.

While some have claimed the bug "permanently" disabled their iPhone's Wi-Fi, other users found that resetting their network settings after connecting to the network restored Wi-Fi for the iPhone.

Apple has been testing iOS and iPadOS 14.7 with developers and public beta testers for the past few weeks. Apple can be expected to publicly release the update soon, given the crucial bug fix that it provides to iPhone user.

Last month, Apple previewed iOS 15, the next major update to iOS destined for a public launch this fall. The upcoming update to iOS 14 will likely be the last major update to the operating system ahead of iOS 15's fall release.

Article Link: Latest iOS 14.7 Beta Patches Bug That Disables iPhone's Ability to Connect to Wi-Fi
 
Last edited:
  • Like
Reactions: DeepIn2U

polyphenol

macrumors 65816
Sep 9, 2020
1,154
1,159
Wales
Saved! I really don't know how I have survived with that bug in 14.6.

Yes - I do realise some people might really have a problem but I suspect the other things in 14.7 are likely far more important to the majority.
 

DeepIn2U

macrumors G4
May 30, 2002
11,216
5,431
Toronto, Ontario, Canada
No this is actually quite important! Glad Apple coding team has made fast work of this - considering more and more of us are now fully able to explore our communities and world again. buy-bye pandemic.
 
  • Disagree
Reactions: Babygotfont

Shirasaki

macrumors G5
May 16, 2015
13,018
7,053
No this is actually quite important! Glad Apple coding team has made fast work of this - considering more and more of us are now fully able to explore our communities and world again. buy-bye pandemic.
COVID will never truly go away, just getting controlled. Just saying.

As for “dangerous”, if a mere resetting network setting could fix it, then it is not so “dangerous”. Inconvenient sure but “dangerous” is slightly over the board.
 

DeepIn2U

macrumors G4
May 30, 2002
11,216
5,431
Toronto, Ontario, Canada
COVID will never truly go away, just getting controlled. Just saying.

As for “dangerous”, if a mere resetting network setting could fix it, then it is not so “dangerous”. Inconvenient sure but “dangerous” is slightly over the board.


The Increased Damage

The first development came via Carl Shou, the reverse engineer who initially discovered the hack. Shou found that joining WiFi networks with specific symbols in their name (SSID) could disable any iPhone’s WiFi until the phone’s network settings were reset. Shou has subsequently managed to increase the damage this hack does, with WiFi only being restored from a custom factory reset where the iPhone backup file is manually edited to remove malicious entries.


Fears had already been expressed that this hack - known as a format string flaw - could be amplified. The end game being to use it to inject and execute malicious code onto devices and even whole networks.

The Hidden Threat

The flip side to this escalating threat, was that iPhone owners would have to join a strangely named WiFi network to be hacked. But the second development suggests this may no longer be the case.

originally reported from above link:


Following revelations last month that all iPhones are vulnerable to a simple WiFi hack, new research from Amichai Shulman, CTO of wireless security specialist AirEye, has claimed this type of threat is potentially more dangerous than was first reported and can also spread to macOS.


“Our response research on the format string flaw revealed that the vulnerability is not only restricted to the iOS operating system,” states Shulman. “It also has the potential to affect the macOS operating system used by many corporations for employee stations.”


“The nature of format string vulnerabilities is that when carefully crafted they can be used to write arbitrary code into random, or chosen, parts of a machine’s memory - and even eventually inject and execute code,” Shulman explains. “Since it is possible for the vulnerable iOS and macOS devices to be connected to the larger corporate network, this code can eventually be used for lateral movement even if it only stemmed from an employee accidentally joining an unknown SSID. Once the malicious code has infiltrated a device on the network, it can exploit corporate data without the need to ‘access the network first’ in the typical ways.”

I'd say it's dangerous enough for Apple to consider it important to patch.
 

bb9

macrumors 6502
Apr 1, 2017
263
150
My setting will ASK if I want to join any unknown WIFI, so in theory, My phone should be save from this bug … yes?
 
Last edited:
  • Haha
Reactions: Babygotfont

Shirasaki

macrumors G5
May 16, 2015
13,018
7,053



originally reported from above link:




I'd say it's dangerous enough for Apple to consider it important to patch.
Oh Forbes…Yeah, I’d trust their click bait SEO curated articles.

Back to the issue, it is good that apple fixes this in a timely manner. Dunno if iOS 15 beta 3 would offer this fix or not. In the meantime, it is very clear that Apple considers wireless connectivity as an ongoing high priority part of their iOS development project.
 
  • Sad
Reactions: Babygotfont
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.