Originally Posted by iphonedev

the exploit IS Media file related!

Did a dev tell you this? They previously said it was hardware based to get people off of their backs, so be wary of them...

Originally Posted by ChronicProductions

We could use this thread instead, I'll just change the name...

Sweet. I am all for it.

I created an IRC Channel in DALNET called #iPhone-Dev if anyone would like to use it for discussion.

DEVS, we need you! Be a part of something rewarding! Put your name beside GeoHot in iPhone Lore! Let's crack this mother!

Originally Posted by ChronicProductions

Did a dev tell you this? They previously said it was hardware based to get people off of their backs, so be wary of them...

Nope : ) it's common-sense this is the only real line of attack open now on the iPhone!

Originally Posted by pcguysam

Sweet. I am all for it.

I created an IRC Channel in DALNET called #iPhone-Dev if anyone would like to use it for discussion.

DEVS, we need you! Be a part of something rewarding! Put your name beside GeoHot in iPhone Lore! Let's crack this mother!

well what you need is, people that wont need 1h to write 10 lines of working code and people that actualy understand in to details what needs to happen. We can read/seach google/give ideas how ever we like, but the end of the day we will never really understand if we wont code for our selfs

also im quiet sure there could be much more ways to JB (in 1.1.3 at least to mobileuser problem is you are very limited with this...), but you would need real skills in coding/debuging/disassembling applications (altho probably once SDK is out you could just "buy" certain application on itunes and viola JB to mobileuser). For ex. there could be buffer overflow in (something stupid) Stocks, that if you feed it with fucked up info you are cant execute arbitrary code.

http://www.toc2rta.com/files/itiff_exploit.cpp

This could be a good starting point for attempting the .mov buffer overflow. It is the exploit currently used with .tif for 1.1.1 phones.

Originally Posted by SoLoR

http://www.kb.cert.org/vuls/id/659761 probably problem is you need to inject code that will eventualy used some other exploit to elevate to root privilages

Hate to ruin the party, but the iPhone and iPod touch do NOT have RTSP streaming support, therefore they don't share this vulnerability either. If we find another vulnerability however, I'll be happy to help

Originally Posted by AriX

Hate to ruin the party, but the iPhone and iPod touch do NOT have RTSP streaming support, therefore they don't share this vulnerability either. If we find another vulnerability however, I'll be happy to help

the fact of the matter is it was a BO they used to get in.

What do you mean by BO?

Originally Posted by AriX

What do you mean by BO?

BufferOverflow!

Originally Posted by iphonedev

BufferOverflow!

Oh. I really don't think that the iPhoneDevTeam used this to get in. In fact I'm 99% sure they didn't. But it could have been something similar.