{"id":966753,"date":"2026-07-02T08:14:00","date_gmt":"2026-07-02T00:14:00","guid":{"rendered":"https:\/\/ztylezman.com\/?p=966753"},"modified":"2026-07-03T05:50:04","modified_gmt":"2026-07-02T21:50:04","slug":"airdrop-vulnerabilities-crash-services","status":"publish","type":"post","link":"https:\/\/ztylezman.com\/en\/gadgets-en-2\/airdrop-vulnerabilities-crash-services\/","title":{"rendered":"AirDrop vulnerabilities cause nearby sharing services to crash"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">AirDrop vulnerabilities can let someone standing 10 to 30 meters away cause nearby devices&#8217; sharing services to repeatedly crash, researchers said.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">How AirDrop vulnerabilities work<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Researchers at the CISPA Helmholtz Center for Information Security examined the application layer protocols used by Apple AirDrop and Samsung and Google Quick Share, and found both systems spend time in the background listening for nearby devices before authentication or user confirmation occurs.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">In a paper posted to arXiv, CISPA researchers Arash Ale Ebrahim and Nils Ole Tippenhauer said an attacker carrying a laptop or other wireless capable device within about 10 to 30 meters can trigger repeated short requests that make receiving services unstable.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">No pairing required to trigger<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">The team found Apple devices set to receive from &#8220;Everyone&#8221; respond during early protocol stages, before the recipient user has authenticated or confirmed a transfer. Quick Share replies when it is visible to nearby devices, even before a completed pairing.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Those behaviors mean an attacker does not need to complete a pairing or steal files to cause disruption. Instead, simply generating repeated protocol exchanges from nearby wireless hardware is sufficient to create repeated failures on target devices.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Impact beyond file sharing<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">The researchers reported that the three AirDrop bugs they analyzed eventually crash a macOS system service called sharingd. <strong>sharingd supports AirPlay, Handoff, Universal Clipboard and Continuity Camera<\/strong>, so those features can stop working while the attack is ongoing.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">During the research team&#8217;s tests, legitimate connections failed while the attack was running and resumed only after the repeated requests stopped. That means the outage is temporary, but it can affect multiple continuity features at once.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Quick Share risks and implementation gaps<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Quick Share vulnerabilities focused on protocol logic and a Windows client memory handling error, the paper said. In Samsung&#8217;s implementation, parts of some protocol frames can be parsed before a UKEY2 key exchange completes. In another case, some frames were handled in unencrypted form even after the key exchange.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Google has paid a bounty to the researchers and submitted a Windows fix into the codebase, according to Help Net Security and 9to5Mac coverage of the disclosures. The researchers also published their technical paper on arXiv.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Fixes, CVEs and practical advice<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Apple told the researchers that one of the AirDrop vulnerabilities has been fixed and assigned a CVE number, the researchers said. Apple has not yet posted a public security advisory for that fix, and other reported Apple issues remain under coordinated disclosure.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Google and Samsung have acted on the Quick Share findings, the researchers and reporting outlets said. Windows related fixes have been submitted, and Google confirmed a bounty was awarded, though public CVE listings for all issues were still being finalized at the time of reporting.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Security researchers and reporting outlets said this is not a reason to disable AirDrop or Quick Share in all cases. As a precaution, avoid leaving AirDrop set to receive from &#8220;Everyone&#8221; for long periods in crowded or unfamiliar public places.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">For more technical details, see the CISPA arXiv paper and reporting by Help Net Security and 9to5Mac. The researchers listed test cases showing repeated short protocol requests as the mechanism that can cause the service crashes.<\/p>\n\n","protected":false},"excerpt":{"rendered":"<p>AirDrop vulnerabilities let nearby devices crash Apple and Quick Share services across iOS, macOS, Android and Windows, researchers warn.<\/p>\n","protected":false},"author":2,"featured_media":966303,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[5012],"tags":[36256,3206,40904,4591,1691,15379,41601,1652,41604,3834],"class_list":["post-966753","post","type-post","status-publish","format-standard","has-post-thumbnail","category-gadgets-en-2","tag-airdrop","tag-android","tag-cispa","tag-google","tag-ios","tag-macos","tag-mobile-security","tag-samsung","tag-sharingd","tag-windows"],"raw_content":"<!-- wp:paragraph -->\n<p>AirDrop vulnerabilities can let someone standing 10 to 30 meters away cause nearby devices' sharing services to repeatedly crash, researchers said.<\/p>\n<!-- \/wp:paragraph -->\n\n<!-- wp:heading {\"level\":2} -->\n<h2>How AirDrop vulnerabilities work<\/h2>\n<!-- \/wp:heading -->\n\n<!-- wp:paragraph -->\n<p>Researchers at the CISPA Helmholtz Center for Information Security examined the application layer protocols used by Apple AirDrop and Samsung and Google Quick Share, and found both systems spend time in the background listening for nearby devices before authentication or user confirmation occurs.<\/p>\n<!-- \/wp:paragraph -->\n\n<!-- wp:paragraph -->\n<p>In a paper posted to arXiv, CISPA researchers Arash Ale Ebrahim and Nils Ole Tippenhauer said an attacker carrying a laptop or other wireless capable device within about 10 to 30 meters can trigger repeated short requests that make receiving services unstable.<\/p>\n<!-- \/wp:paragraph -->\n\n<!-- wp:heading {\"level\":3} -->\n<h3>No pairing required to trigger<\/h3>\n<!-- \/wp:heading -->\n\n<!-- wp:paragraph -->\n<p>The team found Apple devices set to receive from \"Everyone\" respond during early protocol stages, before the recipient user has authenticated or confirmed a transfer. Quick Share replies when it is visible to nearby devices, even before a completed pairing.<\/p>\n<!-- \/wp:paragraph -->\n\n<!-- wp:paragraph -->\n<p>Those behaviors mean an attacker does not need to complete a pairing or steal files to cause disruption. Instead, simply generating repeated protocol exchanges from nearby wireless hardware is sufficient to create repeated failures on target devices.<\/p>\n<!-- \/wp:paragraph -->\n\n<!-- wp:heading {\"level\":3} -->\n<h3>Impact beyond file sharing<\/h3>\n<!-- \/wp:heading -->\n\n<!-- wp:paragraph -->\n<p>The researchers reported that the three AirDrop bugs they analyzed eventually crash a macOS system service called sharingd. <strong>sharingd supports AirPlay, Handoff, Universal Clipboard and Continuity Camera<\/strong>, so those features can stop working while the attack is ongoing.<\/p>\n<!-- \/wp:paragraph -->\n\n<!-- wp:paragraph -->\n<p>During the research team's tests, legitimate connections failed while the attack was running and resumed only after the repeated requests stopped. That means the outage is temporary, but it can affect multiple continuity features at once.<\/p>\n<!-- \/wp:paragraph -->\n\n<!-- wp:heading {\"level\":3} -->\n<h3>Quick Share risks and implementation gaps<\/h3>\n<!-- \/wp:heading -->\n\n<!-- wp:paragraph -->\n<p>Quick Share vulnerabilities focused on protocol logic and a Windows client memory handling error, the paper said. In Samsung's implementation, parts of some protocol frames can be parsed before a UKEY2 key exchange completes. In another case, some frames were handled in unencrypted form even after the key exchange.<\/p>\n<!-- \/wp:paragraph -->\n\n<!-- wp:paragraph -->\n<p>Google has paid a bounty to the researchers and submitted a Windows fix into the codebase, according to Help Net Security and 9to5Mac coverage of the disclosures. The researchers also published their technical paper on arXiv.<\/p>\n<!-- \/wp:paragraph -->\n\n<!-- wp:heading {\"level\":3} -->\n<h3>Fixes, CVEs and practical advice<\/h3>\n<!-- \/wp:heading -->\n\n<!-- wp:paragraph -->\n<p>Apple told the researchers that one of the AirDrop vulnerabilities has been fixed and assigned a CVE number, the researchers said. Apple has not yet posted a public security advisory for that fix, and other reported Apple issues remain under coordinated disclosure.<\/p>\n<!-- \/wp:paragraph -->\n\n<!-- wp:paragraph -->\n<p>Google and Samsung have acted on the Quick Share findings, the researchers and reporting outlets said. Windows related fixes have been submitted, and Google confirmed a bounty was awarded, though public CVE listings for all issues were still being finalized at the time of reporting.<\/p>\n<!-- \/wp:paragraph -->\n\n<!-- wp:paragraph -->\n<p>Security researchers and reporting outlets said this is not a reason to disable AirDrop or Quick Share in all cases. As a precaution, avoid leaving AirDrop set to receive from \"Everyone\" for long periods in crowded or unfamiliar public places.<\/p>\n<!-- \/wp:paragraph -->\n\n<!-- wp:paragraph -->\n<p>For more technical details, see the CISPA arXiv paper and reporting by Help Net Security and 9to5Mac. The researchers listed test cases showing repeated short protocol requests as the mechanism that can cause the service crashes.<\/p>\n<!-- \/wp:paragraph -->\n","_links":{"self":[{"href":"https:\/\/ztylezman.com\/en\/wp-json\/wp\/v2\/posts\/966753","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ztylezman.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ztylezman.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ztylezman.com\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/ztylezman.com\/en\/wp-json\/wp\/v2\/comments?post=966753"}],"version-history":[{"count":1,"href":"https:\/\/ztylezman.com\/en\/wp-json\/wp\/v2\/posts\/966753\/revisions"}],"predecessor-version":[{"id":966754,"href":"https:\/\/ztylezman.com\/en\/wp-json\/wp\/v2\/posts\/966753\/revisions\/966754"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/ztylezman.com\/en\/wp-json\/wp\/v2\/media\/966303"}],"wp:attachment":[{"href":"https:\/\/ztylezman.com\/en\/wp-json\/wp\/v2\/media?parent=966753"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ztylezman.com\/en\/wp-json\/wp\/v2\/categories?post=966753"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ztylezman.com\/en\/wp-json\/wp\/v2\/tags?post=966753"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}