Security Vulnerablities on IOS versions

Similar Messages

• HT6146 i have remained on ios 6.1.3 on my iphone 4s and do not want to move to iOS 7.  what is the iOS security update for this version

  I use the iphone 4s and have not/do not want to update to iOS 7.  Currently i utilize iOS 6.1.3. What is the security update for this version?

  For iPhone 4s is iOS 7.0.6. Only one you can update to. iOS 6.1.6 is only for 3GS and iPod Touch 4th Gen

• HT201210 When I am trying to upgrade my iOS version I am getting an error message saying " the iPad software update server could not be contacted", I also get an error message prior to that which says the certification of the server is invalid

  When I am trying to upgrade my iOS version I am getting an error message saying " the iPad software update server could not be contacted", I also get an error message prior to that which says the certification of the server is invalid?

  Temporarily disable any security software on the computer and try again.

• 802.1X Switch IOS version

                     Hi,
  I' have realy big layer two access network made of etherogenius Cisco switch with different IOS version and train.
  My customer bought ISE (ADVANCED AND BASE LICENSE).
  As far I read on DS it is seem that if you have Minimum IOS release 12.2(52) SE you are able to perform COA, reading  DS with more attention I notice that cisco raccomend IOS versione 12.2(55)SE3 why ? does it means COA does not work with 12.2(52)SE ?
  But more important :
  I need a minimum IOS release to perform 802.1x on my  wired network ?

  Carlo,
  Here is the guide that states 12.2(52)SE but the foot note states that for 802.1x authentication you need 12.2(55)SE.
  http://www.cisco.com/en/US/docs/security/ise/1.1/compatibility/ise_sdt.html#wp55038
  After checking the release notes this solution falls under the Cisco Trustsec which is supported on 12.2(55)SE, there are several features released in 12.2(55)SE such has vlan assignment in multi-auth mode that makes it much easier for Cisco help generate initial configs for their customers.
  Here are the release notes:
  http://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/release/12.2_55_se/release/notes/OL23054.html#wp1047679
  Thanks,
  Tarik admani

• I just tried to install the new IOS version and now my screen is all black.. since an hour. My power button is broken so i cant reset my phone. When i plugg it in my computer, it makes a sound, but the screen stays black. MAY YOU HELP ME PLEASE???

  I just tried to install the new IOS version and now my screen is all black.. since an hour. My power button is broken so i cant reset my phone. When i plugg it in my computer, it makes a sound, but the screen stays black.
  WHAT TO DO

  carter87 wrote:
  so i bought this Iphone 4 thats jail broken,
  Return it.
  Unauthorized modification of iOS can cause security vulnerabilities, instability, shortened battery life, and other issues
  Security vulnerabilities: Jailbreaking your device eliminates security layers designed to protect your personal information and your iOS device. With this security removed from your iOS device, hackers may steal your personal information, damage your device, attack your network, or introduce malware, spyware or viruses.
  Inability to apply future software updates: Some unauthorized modifications have caused damage to iOS that is not repairable. This can result in the hacked iPhone, iPad, or iPod touch becoming permanently inoperable when a future Apple-supplied iOS update is installed.
  ... It is also important to note that unauthorized modification of iOS is a violation of the iOS end-user software license agreement and because of this, Apple may deny service for an iPhone, iPad, or iPod touch that has installed any unauthorized software.

• HT201210 I've updated to the latest IOS version. I am now asked to accept the conditions. I click on accept and am always returned to the accept window. What am I missing

  I've updated to the last IOS version and am now asked to accept the conditions. I click on I accept and am constantly referred back to the acceptance window. What am I missing? TIA

  Hi Vulcan37!
  I have some troubleshooting steps for you that can help you resolve this issue. First, you will want to try just performing a reset on your phone by following the instructions in this article:
  iOS: Turning off and on (restarting) and resetting
  http://support.apple.com/kb/ht1430
  You may also need to make sure your Safari settings are set for accepting cookies. More information on this can be found here:
  Privacy and security - iPhone User Guide
  http://help.apple.com/iphone/7/#/iphb01fc3c85
  Thanks for coming to the Apple Support Communities!
  Regards,
  Braden

• App-specific passwords: are they required for the iOS versions of iMessage and Facetime?

  I was recently prompted to generate app-specific passwords for iMessage and FaceTime on my Mac. The process went reasonably smoothly, but after doing this I wondered whether I'll need to do the same on my iOS devices.
  The Apple Support page Using app-specific passwords - Apple Support offers no clues about which Apple apps require them and on which devices.
  As a test, I tried signing out of iMessage on my iPhone, and signing back in with my regular Apple ID password, not an app-specific one. This worked fine, therefore I assume the iOS versions of iMessage and Facetime do not need app-specific passwords.
  On the other hand, I've read some of the articles which state that the iOS versions of iMessage and Facetime will require app-specific passwords:
    http://arstechnica.com/apple/2015/02/apple-extends-two-factor-authentication-to- facetime-and-imessage/
  Does this mean that app-specific passwords have simply not been "rolled out" to my devices yet, and we'll be prompted to generate app-specific passwords on iOS at some random time in the future?
  If so, that's a problem for non-technical users in my household on whose behalf I look do setup and security. It will effectively mean iMessage will stop working for them, until I can take a look at the issue. This is not always something that can be done quickly if we're in different locations.
  If I pre-empt the roll-out by visiting https://appleid.apple.com/account/manage/security and generate and install an app-specific passwords for them anyway, before the prompt appears, will this work?

  So far the app specific passwords were only required for 3rd party apps, not for "Apple apps". Not sure why you cannot use trusted device verification for iMessage and FT like on the App store or iTunes. or on Apple TV.
  Having to generate a different  app specific password for every device that uses iMessage or FT is a pain, but I guess the powers that be at Apple feel it is more secure.

• Wireless Controller IOS Version Compatability

  Hi Friends,
  we are in process of implementing Aruba ClearPassNAC solution, right now we have Cisco Cisco Controllers Product Version.5.0.148.2. Aruba supports only WPA2 Enterprise security which we are unable to find in cisco controllers. There is WPA2 tab but it does not reflect that its personal or enterprise. we tried with WPA2 but it give us error on client side that security type mismatch.
  only thing I need to confirm is that whether we have to upgrade the ios version of the controller to ver 7.0.235 to support WPA2 Enterprise. Aruba has recommended that version to be on the controllers but I want confirmation from Cisco..

  Salam Faisal,
  I don't remember if 5.0 version supports WPA2 but in all cases this version is pretty old and it is recommended to upgrade even if WPA2 was supported on it.
  7.0.235.0 releaset notes doc shows the upgrade path and it seems you can directly upgrade to 7.0.235.0 image from your current version: http://www.cisco.com/en/US/docs/wireless/controller/release/notes/crn7_0_235_0.html#wp784198
  HTH
  Amjad

• Minimum IOS version to support scp URLs

  While recent IOS versions support scp sources or destinations for copy
  operations ...
     aprompt#copy running-config ?
       flash1:         Copy to flash1: file system
       flash2:         Copy to flash2: file system
       flash:          Copy to flash: file system
       ftp:            Copy to ftp: file system
       http:           Copy to http: file system
       https:          Copy to https: file system
       null:           Copy to null: file system
       nvram:          Copy to nvram: file system
       rcp:            Copy to rcp: file system
       running-config  Update (merge with) current system configuration
       scp:            Copy to scp: file system
       startup-config  Copy to startup configuration
       system:         Copy to system: file system
       tftp:           Copy to tftp: file system
       tmpsys:         Copy to tmpsys: file system
     aprompt#copy running-config
  ... older ones obviously don't (here we have 12.1):
     aprompt#copy running-config ?
       bs:             Copy to bs: file system
       flash:          Copy to flash: file system
       ftp:            Copy to ftp: file system
       null:           Copy to null: file system
       nvram:          Copy to nvram: file system
       rcp:            Copy to rcp: file system
       running-config  Update (merge with) current system configuration
       startup-config  Copy to startup configuration
       system:         Copy to system: file system
       tftp:           Copy to tftp: file system
       xmodem:         Copy to xmodem: file system
       ymodem:         Copy to ymodem: file system
       zflash:         Copy to zflash: file system
     aprompt#copy running-config
  Who could tell me the minumum version to support scp URLs?
  Thanks and Regards, Thomas

  Ideally any feature set questions are answerable in Cisco Feature Navigator (http://www.cisco.com/go/fn).
  The Secure Copy (SCP) feature provides a secure and authenticated method for copying router configuration or router image files. SCP relies on Secure Shell (SSH), an application and a protocol that provide a secure replacement for the Berkeley r-tools. So ideally you should be running crypto images (k9) which support SSH and hence SCP as well.
  But following are some details about SCP, which may be helpful :
  Feature Name
  Releases
  Feature Information
  Secure Copy
  12.2(2)T12.0(21)S
  12.2(25)S
  This feature was introduced in Cisco IOS Release 12.2(2)T.
  This feature was integrated into Cisco IOS Release 12.0(21)S.
  This feature was integrated into Cisco IOS Release 12.2(25)S.
  The following commands were introduced or modified: debug ip scp, ip scp server enable.
  Following is details Feature Information for Secure Shell Version 2 Support:
  Feature Name
  Releases
  Feature Information
  Secure Shell Version 2 Support
  12.2(11)T
  12.2(25)S
  12.3(4)T
  15.3(2)S
  The Secure Shell Version 2 Support feature allows you to configure Secure Shell (SSH) Version 2 (SSH Version 1 support was implemented in an earlier Cisco IOS software release). SSH runs on top of a reliable transport layer and provides strong authentication and encryption capabilities. SSH version 2 also supports AES counter-based encryption mode.
  The following commands were introduced or modified: debug ip ssh, ip ssh min dh size, ip ssh rsa keypair-name, ip ssh version, ssh.
  Secure Shell Version 2 Client and Server Support
  12.0(32)SY
  12.3(7)JA
  12.4(17)
  The Cisco IOS image was updated to provide for the automatic generation of SNMP traps when an SSH session terminates.
  SSH Keyboard Interactive Authentication
  12.2(33)SXH3
  12.4(18)
  The SSH Keyboard Interactive Authentication feature, also known as Generic Message Authentication for SSH, is a method that can be used to implement different types of authentication mechanisms. Basically, any currently supported authentication method that requires only user input can be performed with this feature.
  Secure Shell Version 2 Enhancements
  12.2(50)SY
  12.4(20)T
  15.1(2)S
  The Secure Shell Version 2 Enhancements feature includes a number of additional capabilities such as support for VRF-aware SSH, SSH debug enhancements, and DH Group 14 and Group 16 exchange support.
  In Cisco IOS 15.1(2)S, support was added for the Cisco 7600 series router.
  Note   
  Only the VRF-aware SSH feature is supported in Cisco IOS Release 12.2(50)SY.
  The following commands were introduced or modified: debug ip ssh, ip ssh dh min size.
  Secure Shell Version 2 Enhancements for RSA Keys.
  15.0(1)M
  15.1(1)S
  The Secure Shell Version 2 Enhancements for RSA Keys feature includes a number of additional capabilities to support RSA key-based user authentication for SSH and SSH server host key storage and verification.
  The following commands were introduced or modified: ip ssh pubkey-chain, ip ssh stricthostkeycheck.
  -Thanks
  Vinod
  **Encourage Contributors. RATE Them.**

• HT4013 Is it safe and secure to use iOS 3.1.3 ?

  Is it safe and secure to use iOS 3.1.3 ?
  And are you able to use the latest version of the facebook app on this iOS?

  Is it safe and secure to use iOS 3.1.3 ?
  I have heard of no exploits that can affect non-jailbroken iPhones regardless of the version of iOS. While iOS 3.x is no longer being updated, there should be no reason to worry. A second-generation iPod touch can run up to iOS 4.2.1, though.
  And are you able to use the latest version of the facebook app on this iOS?
  No. As the Requirements for the Facebook app in the iTunes Store state, it requires iOS 4.0 or later.
  Regards.

• I have synced my ipad with my computer then downloaded latest ios version.  How do I resync my data back to my ipad?

  I have synced my ipad with my computer then downloaded latest ios version.  How do I resync my data back to my ipad?

  You Restore from iTune Backup.The syncing is towards the end of the Restore.
  1. Settings>General>Reset>Erase all content and settings
  2. You'll be asked twice to confirm
  3. You'll see Apple logo and progress bar
  4. You'll see a big iPad logo on screen
  5. Configuration start
  6. Set language
  7. Set country
  8. Select Network and input Password>Join
  9. Enable Location Service>Next
  10. You'll be given 3 options (a) Setup as New iPad (b) Restore from iCloud Backup (c) Restore from iTune Backup
  11. Select Restore from iTune Backup
  12. You will see picture of USB cable pointing towards iPad
  13. Connect iPad to iTune (make sure iTune is on standby)
  14. Tap Continue (computer)
  15. Restore iPad from Backup (computer)
  16. See progress bar with estimated time (computer)
  17. See Restore in Progress on iPad
  18. See Apple logo
  19. See Apple and Progress Bar
  20. Slide to Unlock
  21. Copying Apps back to iPad (computer)
  22. You'll see Loading/Installing/Waiting below the Apps (iPad)
  23. Sync Music/Podcast/Movies to iPad (computer)
  24. Sync completed (computer)

• I have an iphone 5. I have no idea of the ios version in it. Recently i broke my iphone screen and its showing up nothing. it was never synced to itunes or to any pc. When i tried to connect iphone to itunes in my pc it was asking was passcode which

  I have an iphone 5. I have no idea of the ios version in it. Recently i broke my iphone screen and its showing up nothing. it was never synced to itunes or to any pc. When i tried to connect iphone to itunes in my pc it was asking for passcode which i had forgotten ages ago. Suggest me the possible ways to recover my iphone.

  Since the screen doesn't work, it will be challenging to get it working, even thru iTunes. You will need to ask yourself if you want to invest more money in it or get a new one, especially since the contents will be lost since you don't know the passcode. Apple will gladly replace the screen for a cost that represents a significant portion of the price of a new. Once the screen is done, you may or may not be eligible for the free iPhone 5 Battery Replacement Program.
  Or, if you decide to salvage it and are strong of heart and firm of hand, you can replace the screen yourself for less. See here and note they carry kits with all needed tools and parts.

• How come I can't update my iPad 1 to the new iOS 6 it says my iOS version 5.1.1 is the latest version?

  How come I can't update my iPad 1 to the new iOS 6 it says my iOS version 5.1.1 is the latest version?

  The iPad 1, coming up on three years since it was introduced, has been given two major and a number of minor upgrades to iOS, more than many tablet manufactures provide. The iPad 1's hardware just can't effectively support many of the features in iOS 6. So I don't think that it's particularly unfair for Apple to no longer provide updates. And yes, I do own and manage a number of iPad 1s.
  Regards.

• I have an iPad 1 that is currently showing software updated at version 5.1.1.  Is it possible to update to iOS version 7 on this device?  My goal is to get Garage Band on this device and the app store is telling me I need iOS version 7.

  I have an iPad 1 that is currently showing software updated at version 5.1.1.  Is it possible to update to iOS version 7 on this device?  My goal is to get Garage Band on this device and the app store is telling me I need iOS version 7.

  Hi,
  If you really need to upgrade you can save a bit of money and get an older version than the ipad Air.
  First, you can sell your ipad 1 to places like gazelle.com, cashforyourmac.com, sellyour mac.com, or many others out there. The sites I listed give you cash. At this point gazelle.com is giving $70.00 for any ipad 1 in 'good' condition. And cashforyourmac will give you $25.00 over what gazelle.com or sellyourmac.com offers you. Shipping is free.
  Then, with that money, go the the Apple online certified refurbished store. As an example, a new 64gb Air costs $699.00. A refurbed 4th gen 64gb costs $529.00 and a 3rd gen 64gb costs $499.00. Personally, I'd skip the 3rd gen. So if you buy a 4th gen 64gb at $529.00 minus what you can get from a sale to above, you can get an ipad 4 64gb for just over $430.00, a savings of savings of about $270.00. (A new 32gb Air is $599.00, a 4th gen 32gb is $449.00, and a 3rd gen 32gb is not on the site right now.) Google it and check if you can get better offers anywhere else. But getting one from the Apple refurb store gives you an essentially new ipad and using the above sites, you're not locked in with a particular site which will give you a gift card and restrict you to their store/site.
  Each Apple refurbished ipad (any version) comes with a new front and back cover, a brand new battery, same return policy, and a full one year warranty with 90 days of phone support. Each comes in a white box like a new ipad with the wall charger and usb cable. The only difference is that it says in small print on the bottom of the box that it is Apple certified refurbished. Also, if you buy refurbs, be sure to check the store many times a day. They can come and go quickly, so when you see what you want, buy it right away. Shipping is free and pretty fast. (We bought two a year and a half ago and they have been great!)
  Hope this helps.

• My Ipod 5 broke a while ago and I just managed to get a new one. However, when I tried to do a backup to configure it, a window popped up saying it wasn't possible because this devide's iOS version is too old for this backup... what do I do??

  How can I do a backup now if I can't even access this new device to update its iOS version? And if I just select the option of configuring it as a new Ipod so I can update it, will it still be possible for me to download the previous device's backup on it later? I'd hate to lose everything.

  That error message means that your new iPod is not fully updated. Update the new iPod and then restore from the backup of your old iPod.