Hey ! After EverythingApplePro revealed my bug, I think it’s important to explain how it works. This exploit works on Apple devices running iOS 8 to iOS 10.2.1 b2 (patched in beta 3).
First, if you haven’t heard about my bug, check out this video !
Warning and Disclaimer: Don’t try this if you don’t know what you do, I am not responsible if you break your device.
- Download the file here
- Upload it to iCloud Drive, Dropbox etc.. (if you want to keep it)
- Share the file to send it via Message
- Send it to your unsuspecting victim
- When they click on it, their Messages application will freeze and don’t work anymore.
- Send them this magical link to fix the problem.
How does it work ?
It’s lot of text loaded by iOS and crash the app.
When your victim click on the message, their Messages app will attempt to load a large amount of data that couses the system malfunction. However the text in the file is very complicated for the system and causes a CPU average and freezing the app. If you close the app and try to reopen it, iOS will try to reload the previous message but can’t because it’s the same file containing too much text for the system to handle properly.
All of the code is here:
VCF file: vincedes3.com/vincedes3.vcf
Fix link: vincedes3.com/save.html
Another fix: See the post on Twitter
Another fix 2: See the post on Twitter
There seems to be a problem with some iPads where the fix does not work. I can’t do anything about this unfortunaly :/ Try the alternate fix or contact me by the contact section or on my Twitter.
Jailbroken devices appear to be protected but I don’t know why.
Code in .txt format: vincedes3.com/crashtext.txt
Code in HTML (for copy on iOS): vincedes3.com/crashtext.html
My video of demo:
Thanks to William for the help (english translation).