Anime, manga, and games, with a take · A Yukimedia publication

← all stories other 1 sources · 1h ago ·

iOS LINE App Vulnerability Allows DoS Attack Via In-App Browser

The vulnerability affects a widely used messaging app and could allow an attacker to temporarily disable an iOS device by exploiting the in-app browser's URL scheme handling, requiring users to update to mitigate the risk.

Reporting from 1 source: ASCII.jp.

iOS LINE App Vulnerability Allows DoS Attack Via In-App Browser

Japan Vulnerability Notes (JVN) disclosed a vulnerability in the iOS version of LINE on July 13. The in-app browser's handling of URL schemes is insufficient, allowing an attacker to cause repeated dialogs by directing a user to a malicious webpage. This can temporarily render the device inoperable. The affected version is 26.3.0 and earlier. JVN recommends users update to the latest version provided by LINE Yahoo.

Japan Vulnerability Notes published an advisory on July 13 for a vulnerability in the iOS LINE app's in-app browser. The advisory states that the browser's insufficient protection when processing arbitrary URL schemes can lead to a denial-of-service condition. An attacker who tricks a user into opening a specially crafted webpage can cause the app to display repeated dialogs, making the device temporarily unresponsive. The vulnerability affects LINE version 26.3.0 and earlier. JVN urges users to update to the latest version from LINE Yahoo.

Synthesized by Yomimono from the 1 cited source below, including Japanese-language reporting where cited, then editorially reviewed before publishing.

Sources