iOS jailbreak howdunnit partially solved
The iOS 4 drive-by jailbreak released over the weekend uses a PDF exploit to weave its magic, according to an analysis by security researchers. The hack, developed by the iPhone Dev Team and available via jailbreakme.com, can be run directly on a device running iOS 4. Earlier tools required a software download that was run via a …
This topic is closed for new posts.
Easiest JB ever
Absolute breeze - don't even need a reboot. kudos to the sploit writers.
Oooh the irony*
"This is not an Adobe bug. It's an Apple bug," he added.
So, if Apple weren't so dead set against letting Adobe put their software onto the iPhone, then maybe this flaw wouldn't be there to exploit in the first place?
*yes I know that;s not the proper meaning of the word irony. Maybe I was being ironic?
oh the irony
an apple jesus phone being jailbreaked by using non other than an Adobe product.
Would Adobe like to put a chalk mark on the board?
From Jobs@Apple.com
This is simply another undocumented feature which we planned to activate in a future iOS upgrade.
As you might appreciate we have other pressing (no pun intended) matters to deal with.\
Jobs
If apple does make that announcement
I wouldn't be surprised. After all, didn't the DMCA very recently been patched to legalize this?
If Apple blocks this exploit or doesn't provide a way to jailbreak the phone, they'd be running against the DMCA.
I hope not!
Rubbish!
If Apple don't patch this security hole they are asking for trouble. I expect it to be patched VERY soon.
Just because it is legal to JB does not mean Apple must leave security holes.
At the moment the only way to protect yourself is to JB and install PDF Loading Warner from cydia. All non-JB phones are at risk of a malicious payload.
JB now, make sure you have your blobs on file, install PDF Loading Warner and if necessary unlock your phone with UltraSn0w (now available for all 3G/3GS and iPhone 4s)
Nah.
More like "With the launch of the new iDF document format from Apple, we shall drop support for reading PDF documents because hardly anyone uses them, its an insecure format and isn't made in Cupertino".
Wonder what odd's Betfred would offer me for such a launch at next years Apple conference?
A Big thanks
to comex, for your great work, and for continuing to help make an already great platform open!
thanks
nothing is 100% secure. things like this will ensure more secure updates. dont stop hacking!
@Easiest JB ever
Completely agree. Just did my iPod Touch (OS 4.0) while playing music, it didn't even flinch. Now Cydia is on the home screen. It just doesn't get any smoother.
Spotted this yesterday
When the site was busy it was just serving up the list of pdfs - a different one for each model and firmware version.
Android for iphone?
Come on guys. The hardware is compatible, isn't it?
Re: android for iphone?
You could just google for android on iphone...there are enough sites about it
Bindun
There is a project already, google is your friend for finding that...
Although I'd rather not have to stick electrical tape to my phone...
Sure hope this gets fixed soon.
Before somebody crafts a malicious site to install something not so benign on hapless iOS visitors.
Actually, I hope someone does so.
It would finally bring down the Apple mythos that their platform is so perfect it is unable to get "malware" or "virus" or stuff like that. An exploit that big would be something that not even Jobs would be able to dismiss as a non-problem.
Apple hacks itself as usual and as all other manufacturers do...
..but people still buy the marketeers mantra that would be little computer wiz kids hacking and cracking DRM encrypted hardware and earning nothing out of it... like it was ever possible... Common people don't get how complex things are and how much it would cost to do any real reverse engineering. Unless secret agencies and militaries were behind any hacking or cracking thing... it's just a marketing stunt, manufacturers hack/crack themselves in order to sell more hardware, it's just as simple as that.
Cloudy with a chance of exploits?
' "It's unclear weather this has any implications on other platforms," Hypponen writes '
Unclear weather - that sums up Summer so far.
gone by lunchtime
Kudos to the devteam for publicizing this bug.
You can depend on Apple to have a fix out by the end of the weekend, if not before.
Apple really don't care too much if you can jailbreak by modifying an OS image, installing it on a device you're holding in your hand (thus wiping all user data from it), and then restore user data from your last backup. There are no security implications.
But a remote root exploit is an entirely different beast and will not be tolerated.
Oh *splendid*!
Made my day, that did. Excellent work!
GJC
Hun ??
I wouldn't be surprised. After all, didn't the DMCA very recently been patched to legalize this?
If Apple blocks this exploit or doesn't provide a way to jailbreak the phone, they'd be running against the DMCA.
Did I fail English. Allowed does mean forced. Read the DMCA.
This topic is closed for new posts.
