Results 1 to 6 of 6
Discuss Nature of security exploit .1 at the General - Hackint0sh.org; So, if my reading of 1.1.1 jailbreak thing is correct, TIFF image on a webpage ...
  1. #1
    Senior Professional Array

    Join Date
    Sep 2007
    Posts
    130
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    13

    Cool Nature of security exploit .1

    So, if my reading of 1.1.1 jailbreak thing is correct, TIFF image on a webpage can make Safari do interesting things, [removed]such as writing data to broadband [/removed] [added] shouldn't we talk a little about patching this?[/added]
    Last edited by squirrelfon; 10-17-2007 at 02:19 AM.



  2. #2
    Advanced Array mokum's Avatar

    Join Date
    Aug 2007
    Posts
    48
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default

    Interesting things YES

    Write to the baseband: no.

  3. #3
    Senior Professional Array

    Join Date
    Sep 2007
    Posts
    154
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    14

    Default

    The one thing everyone is overlooking when complaining that apple locked down the previous exploits that jailbreaking took advantage of is that these were exploits that malicious code could take advantage of.
    Various 'Books old and new
    8 Giggity, Giggity, Gigg-it-y.

  4. #4
    Senior Professional Array

    Join Date
    Sep 2007
    Posts
    130
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    13

    Angry

    Interesting things, such as uploading any code to non-protected memory, right?

    Personally I would be more happy to see anyone patching this vulnerability
    than working on any other interesting application

  5. #5
    Advanced Array BustAGroove's Avatar

    Join Date
    Sep 2007
    Location
    USA
    Posts
    39
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default

    Scary stuff -> http://blog.wired.com/27bstroke6/200...loit-crea.html
    So how does this affect the various iterations of unlocks: iUnlock, AnySim, ISPF, etc. - with Metasploit calling out these security vulnerabilities Apple will have to do something (upgrade firmware) in order to address these issues, if they don't then Apple will look very irresponsible and will be bad PR for them for not protecting their consumers. IPhoneDev and others would need to find another hole to unlock our phones....Apple could potentially lock down the IPhone and probably why they're doing the Web 2.0 thing instead of allowing native apps?
    S/W Unlocked: 8Gb iPhone
    Calls In/Out: YES
    SMS In/Out: YES
    F/W: 1.1.4 (4A102)
    Edge : Yes
    YouTube: YES
    Carrier: T-Mobile USA
    Unlock Method: ModMyIPhone - Unlock The IPhone - Easy Unlock [OSX]


  6. #6
    Senior Professional Array

    Join Date
    Sep 2007
    Posts
    130
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    13

    Default

    I don't think I understand this quote from the link:

    "All they'll need to do is back port the firmware to an earlier version that's vulnerable,"

 

 

Similar Threads

  1. MacNN: iOS 5.0.1 security fixes eliminate Smart Cover exploit
    By hackint0sh in forum Latest Headlines
    Replies: 0
    Last Post: 11-10-2011, 08:50 PM
  2. Replies: 0
    Last Post: 08-25-2010, 04:40 AM
  3. Replies: 0
    Last Post: 08-25-2010, 02:10 AM
  4. MacNN: Vista security gutted by new web exploit
    By hackint0sh in forum Latest Headlines
    Replies: 0
    Last Post: 08-08-2008, 06:10 PM
  5. Nature of security exploit
    By squirrelfon in forum General
    Replies: 9
    Last Post: 09-19-2007, 11:12 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
Powered by vBulletin®
Copyright © 2014 vBulletin Solutions, Inc. All rights reserved.
Search Engine Friendly URLs by vBSEO
(c) 2006-2012 Hackint0sh.org
All times are GMT +2. The time now is 06:14 PM.
twitter, follow us!