DarkSword iOS 18 Zero-Day Analysis: FTL JIT & PAC Bypass

Security researchers have unveiled a sophisticated zero-day exploit chain targeting iOS 18.3.1, dubbed DarkSword. This attack vector is particularly alarming because it achieves zero-click entry through a flaw in the iMessage parsing engine, specifically targeting the FTL (Faster Than Light) JIT compiler used in WebKit.

The FTL JIT Entry Point

The exploit begins with a malformed HEIF image sent via iMessage. When the system attempts to generate a thumbnail, it triggers a memory corruption vulnerability in the ImageIO framework. This allows the attacker to gain initial code execution within the sandbox. From there, the chain pivots to the WebKit process, where it exploits a logic flaw in the JIT (Just-In-Time) compiler.

Specifically, the DarkSword exploit targets the DFG (Data Flow Graph) optimization phase. By providing a specifically crafted JavaScript object, the attacker can trick the compiler into omitting a bounds check, leading to an Out-Of-Bounds (OOB) read/write primitive. This is the first time a zero-click exploit has successfully manipulated the FTL JIT in over two years.

Bypassing PAC and PPL

Apple's hardware-level security, including PAC (Pointer Authentication Codes) and PPL (Page Protection Layer), was designed to stop exactly this type of attack. However, DarkSword employs a novel PAC bypass that leverages a race condition in the dyld cache. By timing the exploit to coincide with a specific kernel house-keeping task, the attackers were able to leak authenticated pointers and forge their own.

The final stage of the exploit targets the XNU kernel itself. A heap overflow in the AppleMobileFileIntegrity (AMFI) driver allows the attacker to gain kernel-level privileges. Once the kernel is compromised, the attacker can disable System Integrity Protection (SIP) and install a persistent rootkit that survives reboots.

Mitigation and Impact

Apple has responded by releasing iOS 18.4, which includes a total redesign of the iMessage sandbox and a more aggressive PAC implementation. Security professionals recommend that high-risk individuals enable Lockdown Mode, which completely disables the JIT compiler in WebKit and significantly reduces the attack surface of ImageIO.

The discovery of DarkSword underscores the ongoing arms race between state-sponsored actors and hardware manufacturers. As defenses like PAC become more robust, exploit chains are becoming increasingly complex, often requiring 5-7 different vulnerabilities to achieve full compromise.