January 27, 2016 at 11:07

CrashSafari.com sends iPhones to reboot

    Warning: do not go to this site without preparation




    In the last couple of days , a link to CrashSafari.com began to spread on social networks , which suspends the Safari browser and sends the iPhone to reboot. This is not limited to its malicious effect: an attempt to open a site on the desktop can also lead to a system crash, for example, in the Chrome browser under Windows 7.

    The same browser reload technique works on CrashChrome.com. In this case, the Chrome browser is vulnerable for Windows, Mac, iOS, and Android.

    It is especially dangerous that on Twitter and other social networks you can publish an abbreviated link on CrashSafari.com, passed through an abbreviation of links like Bit.ly.


    CrashSafari.com sends an infinite string of characters to the address bar of the browser, causing a memory leak problem. IOS devices go into reboot after 15-20 seconds.

    There is an identical site CrashChrome.com. In a discussion of the issue on the Chrome developer forum, renowned specialist Mikko Hipponen from F-Secure explained that crashsafari.com and crashchrome.com actually exploit the function of accessing the history of visited pages history.pushState().

    for(var i = 0; i<1000000; i++){
    history.pushState(null,'','');
}

    crash.html The

    bug is effective, including on the latest versions of iOS, as well as in Chrome and Firefox browsers.

    Actually, the site has been working for about a year, but it was last week that various jokers on social networks began to actively distribute the link. So be careful!


    According to Wired , CrashSafari.com launched the 22-year-old security specialist Matthew Bryant from San Francisco, purely as a joke.

    Apple is aware of the problem and is actively working on a patch.
    Tags:

    Also popular now: