Apple's A12 and A13 Chips Facing New Unpatchable Exploit

Security probe steadfast Paradigm Shift contiguous published details of a caller BootROM vulnerability affecting Apple's A12 and A13 chips, on with a moving proof-of-concept exploit named "usbliter8."


The BootROM, oregon SecureROM, is the archetypal codification an iPhone runs erstwhile it powers on. Because it is baked straight into the spot astatine manufacture, immoderate vulnerability recovered determination cannot beryllium fixed with a bundle update, meaning affected devices volition stay susceptible for the remainder of their lives.

The past publically known BootROM exploit of this benignant was "checkm8," released successful 2019 which affected devices from the iPhone 4S done to the iPhone X. usbliter8 present extends that past to the adjacent procreation of chips, covering the iPhone XS done to the iPhone 11 series.

The exploit works by taking vantage of a bug successful the USB controller built into Apple's chips. When an iPhone receives USB information during startup, the controller uses a representation buffer to store incoming packets. Paradigm Shift recovered that by sending a circumstantial series of unusually tiny packets, they could manipulate an interior hardware pointer successful a mode that causes it to locomotion backwards done memory, allowing information to beryllium written to locations it should ne'er reach. The researchers accidental this appears to beryllium a bug successful the USB controller hardware itself, not successful Apple's software.

The A11 chip, utilized successful the iPhone X, is not affected due to the fact that its USB operator manually resets the pointer aft each packet. A14 and aboriginal chips are besides safe, arsenic they configure a representation extortion diagnostic correctly astatine the BootROM level. The A12 and A13 beryllium successful a susceptible mediate crushed betwixt the two.

On A12 devices, gaining codification execution is comparatively straightforward. On A13 devices, things are considerably harder due to the fact that Apple introduced a information diagnostic called Pointer Authentication Codes (PAC), which detects and blocks definite types of representation tampering. Paradigm Shift says moving astir PAC connected the A13 required a lengthy multi-step process earlier the researchers could yet instrumentality power of the processor.

Once successful control, the exploit installs a customized handler that survives a instrumentality restart and adds 2 capabilities: temporarily lowering the device's information settings, and booting unsigned bundle without immoderate verification checks. It besides injects the accepted "PWND" drawstring into the iPhone's USB serial fig arsenic a awesome that the instrumentality has been compromised, a normal that carries implicit from checkm8 and earlier exploits.

Paradigm Shift notes that portion usbliter8 does not impact the Secure Enclave directly, a BootROM compromise of this benignant opens up wider avenues for attacking it. The steadfast says it reported its findings to Apple Product Security earlier work and worked with Apple connected coordinated disclosure. The afloat proof-of-concept codification has been published alongside the write-up astatine ps.tc.
This article, "Apple's A12 and A13 Chips Facing New Unpatchable Exploit" archetypal appeared connected MacRumors.com

Discuss this article successful our forums