Jump to content



Photo

Hacker finds iOS 4.1 bootrom vulnerability


  • Please log in to reply
19 replies to this topic

#1 Nomad_

Nomad_

    Neowinian

  • 565 posts
  • Joined: 19-July 02

Posted 09 September 2010 - 12:57

Hacker finds iOS 4.1 bootrom vulnerability that can jailbreak all current hardware

http://www.geek.com/...rdware-2010099/

Yesterday’s release of iOS 4.1 was good news for iPhone gamers and iPhone 3G owners who had performance issues post-4.0, but bad news for jailbreakers, with the Dev Team themselves warning users not to upgrade to 4.1 as there was no known way to reverse the baseband post-update.

As usual, though, what’s true in the cat-and-mouse jailbreaking scene one day is not true the other, and now there’s good news for jailbreakers, at least in theory. iPhone hacker pod2g has revealed on Twitter that he has successfully discovered a new bootrom exploit, and even better: all the new iOS hardware including the iPhone 4 and new iPod Touch is vulnerable to it.

The good news here is that means that Apple would be powerless to patch this vulnerability through software, since its a hardware issue… but that won’t necessarily stop them from patching up the issue at the factory for any hardware that comes down the line in coming months.

So, in theory, the Dev Team should be able to use this to jailbreak any iPod Touches and iPhone 4s currently in the wild… but given Apple’s historic response to jailbreaking, don’t expect this vulnerability to last. If you want a new iPod Touch or iPhone 4, and if you want to jailbreak it, buy your device now… if you buy it in a few months, you may very well be out of luck.


#2 Nick H.

Nick H.

    Neowinian Senior

  • 11,454 posts
  • Joined: 28-June 04
  • Location: Switzerland

Posted 09 September 2010 - 13:03

Woo-hoo! So no more wondering if a firmware update will break my jailbreak (once someone creates a jailbreak using this vulnerability)? Sounds rockin' :punk:

#3 seta-san

seta-san

    Neowinian Senior

  • 4,409 posts
  • Joined: 17-February 05

Posted 09 September 2010 - 13:04

iphone hackers = unpaid vulnerablity and security experts

seriously. apple should pay these guys everytime they come up with an exploit.

#4 Panacik

Panacik

    Little man

  • 10,665 posts
  • Joined: 30-September 03

Posted 09 September 2010 - 13:04

Hacker finds iOS 4.1 bootrom vulnerability that can jailbreak all current hardware

http://www.geek.com/...rdware-2010099/

Yesterday’s release of iOS 4.1 was good news for iPhone gamers and iPhone 3G owners who had performance issues post-4.0, but bad news for jailbreakers, with the Dev Team themselves warning users not to upgrade to 4.1 as there was no known way to reverse the baseband post-update.

As usual, though, what’s true in the cat-and-mouse jailbreaking scene one day is not true the other, and now there’s good news for jailbreakers, at least in theory. iPhone hacker pod2g has revealed on Twitter that he has successfully discovered a new bootrom exploit, and even better: all the new iOS hardware including the iPhone 4 and new iPod Touch is vulnerable to it.

The good news here is that means that Apple would be powerless to patch this vulnerability through software, since its a hardware issue… but that won’t necessarily stop them from patching up the issue at the factory for any hardware that comes down the line in coming months.

So, in theory, the Dev Team should be able to use this to jailbreak any iPod Touches and iPhone 4s currently in the wild… but given Apple’s historic response to jailbreaking, don’t expect this vulnerability to last. If you want a new iPod Touch or iPhone 4, and if you want to jailbreak it, buy your device now… if you buy it in a few months, you may very well be out of luck.


I believe there is also a known vulnrability in the iOS itself which will allow for a type of usenet jailbreak similar to the jailbreak.me site? Although this could\would be patched by a software update, for now, it would be great if someone would release a jailbreak using this method until the bootrom exploit is configured correctly.

I know the current JBs for 4.0.2 work in 4.1, but result in the phone app missing, but im thinking of running the JB and fixing the app myself, until an official JB is released in the comeing days.

#5 +Audien

Audien

    Software Eng.

  • 4,391 posts
  • Joined: 30-December 03
  • Location: Seattle, WA
  • OS: Windows 8.1/Mac OSX
  • Phone: iPhone 5S

Posted 09 September 2010 - 13:07

No point in having more than one exploit out in the wild since Apple will just patch it and then when the next version comes out it can't be used. :p

#6 Panacik

Panacik

    Little man

  • 10,665 posts
  • Joined: 30-September 03

Posted 09 September 2010 - 13:12

No point in having more than one exploit out in the wild since Apple will just patch it and then when the next version comes out it can't be used. :p


Urm, but why not use the current software exploit to create a usenet jailbreak, whilst the bootrom JB is being created. After that Apple can patch the software exploit all they want.

#7 Rudy

Rudy

    Neowinian Senior

  • 22,404 posts
  • Joined: 30-September 01
  • Location: Ottawa, On

Posted 09 September 2010 - 13:18

Awesome :)

#8 vetAndrew Lyle

Andrew Lyle

    Don't Panic!

  • 31,911 posts
  • Joined: 15-December 03
  • Location: Toronto, Ontario
  • OS: Windows 7 SP1

Posted 09 September 2010 - 13:48

This is awesome news :D

#9 ashpowell

ashpowell

    Neowinian

  • 735 posts
  • Joined: 13-November 06
  • Location: UK
  • OS: Windows 8.1
  • Phone: Nexus 5

Posted 09 September 2010 - 13:51

took their time

#10 Inklin

Inklin

    Neowinian Senior

  • 1,679 posts
  • Joined: 11-April 08
  • Location: Kent, UK
  • OS: Windows 8.1 Pro

Posted 09 September 2010 - 13:59

With Jailbreaking recently ruled legal, wouldn't further action taken by apple to prevent jailbreaking lead them into legal doo-doo in the future? :/

#11 kInG aLeXo

kInG aLeXo

    Neowinian

  • 707 posts
  • Joined: 15-January 09

Posted 09 September 2010 - 14:09

With Jailbreaking recently ruled legal, wouldn't further action taken by apple to prevent jailbreaking lead them into legal doo-doo in the future? :/

The rule made it legal to jailbreak, but not illegal to prevent jailbreak.

#12 +techbeck

techbeck

    Neowinian Senior

  • 18,145 posts
  • Joined: 20-January 05

Posted 09 September 2010 - 14:31

Its funny how companies put sooo much money in to protecting their products and before or soon after some is released, it gets hacked. They cannot win so why do they bother.

#13 Nihilus

Nihilus

    Resident Newbie

  • 1,095 posts
  • Joined: 27-May 09

Posted 09 September 2010 - 14:37

Its funny how companies put sooo much money in to protecting their products and before or soon after some is released, it gets hacked. They cannot win so why do they bother.

To make it difficult :)

If enough users did it, and they could do it with the simple download of one application for all firmware releases, it would be a lot more common. As it is many users stay away because they fear bricking their phones, they don't understand what firmware version they have or what program to use to do it. Or they've just never thought of the benefits and label it as "something geeks do".

IMHO apple have had reasonable success keeping people from doing this, I know plenty of people who refuse to jailbreak pretty much solely for the above reasons.

#14 Growled

Growled

    Neowinian Senior

  • 41,508 posts
  • Joined: 17-December 08
  • Location: USA

Posted 09 September 2010 - 15:10

Great news.

#15 ViZioN

ViZioN

    Resident Scotsman

  • 4,317 posts
  • Joined: 17-January 05
  • Location: Edinburgh

Posted 09 September 2010 - 18:05

Awesome, hopefully my new iPod should arrive in the next day or two!