Apple iOS Mobile Device Management (MDM) Restriction Bypass
Описание
In this PoC video, a specific restriction bypass security vulnerability regarding Apple iOS mobile device management (MDM) functionality, which was found by SySS senior IT security consultant Philipp Buchegger, is demonstrated.
Apple iOS allows to set different restrictions for supervised devices that are enrolled in a mobile device management solution. Those restrictions may affect iOS functionality, apps, or media content.
For instance, on a company device using device enrollment, it is possible to enforce certain restrictions in order to better protect security-sensitive data.
In such a test scenario, Philipp Buchegger found out that it is possible to bypass the "copy & paste" restriction (namely "Opening documents from managed to unmanaged apps not allowed") via the "Quick Look" functionality.
This security issue was reported to Apple via our SySS security advisory SYSS-2020-011 [1].
Apple does not consider the demonstrated restriction bypass to be a security vulnerability and has not fixed it yet.
[1] SySS Security Advisory SYSS-2020-011
https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2020-011.txt
#ios #restriction #bypass
Рекомендуемые видео
