Palo Alto Networks Researchers Discover Critical Safari 9.1 Vulnerability

Ryan Olson

Palo Alto Networks researchers were recently credited with the discovery of an Apple product vulnerability.

Researchers Tongbo Luo and Bo Qu discovered a WebKit vulnerability (CVE-2016-4589) affecting Safari in Apple iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later, and Apple TV (4th generation).

Apple addressed both findings in a recent security updates (HT206902 and HT206905) and are resolved in iOS 9.3.3 and tvOS 9.2.2. Palo Alto Networks also released IPS signatures covering these vulnerabilities (for current customers, available in content release 600).

Palo Alto Networks is a regular contributor to vulnerability research in Microsoft, Apple, Android and other ecosystems. By proactively identifying these vulnerabilities, developing protections for our customers, and sharing the information with the security community, we are removing weapons used by attackers to threaten users and compromise enterprise, government and service provider networks.

1 Reader Comment

  1. I just updated my iOS device and hope this have been covered there

Got something to say?

Get updates: Unit 42

Sign up to receive the latest news, cyber threat intelligence and research from Unit42

By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement.

© 2018 Palo Alto Networks, Inc. All rights reserved.