Reverse Engineering a WhatsApp 0-click Vulnerability YT

Description

Are you a security researcher or reverse engineer?

For 50% off IDA Products use promo code BILLY50, https://hex-rays.com/pricing *
For 30% off IDA Training use promo code BILLY30, https://hex-rays.com/training **

*License discounts are only valid for individuals, not corporations. Cannot be combined with any other promo code or discount.
** Cannot be combined with any other promo code or discount.

/////////////////////////////////////

Hey guys - today we're looking at CVE-2025-43300, a recently patched iOS vulnerability in a user space shared library handling image decompression. This bug was found to have been exploited in-the-wild on iOS 18 devices, and when paired with the WhatsApp bug CVE-2025-55177 it was used as an entry point in a zero-click exploit chain.

In this video we look at a sample image that is capable of triggering the bug, and we explore the code by means of reverse engineering to figure out what exactly happened.

Thanks for watching,
~ Billy

References:
https://www.whatsapp.com/security/advisories/2025/
https://blog.quarkslab.com/patch-analysis-of-Apple-iOS-CVE-2025-43300.html
https://github.com/DarkNavySecurity/PoC/tree/main/CVE-2025-43300
https://www.msuiche.com/posts/detecting-cve-2025-43300-a-deep-dive-into-apples-dng-processing-vulnerability/
https://github.com/b1n4r1b01/n-days/blob/main/CVE-2025-43300.md
https://projectzero.google/2025/12/android-itw-dng.html