Page 1 of 12 1234567891011 ... LastLast
Results 1 to 10 of 115
Discuss A new exploit discovered, might help in cracking 1.1.1 soon at the General - Hackint0sh.org; It looks like the dev team is up to something. I have been following them ...
  1. #1
    Amazingly Knowledgeable Array Locked's Avatar

    Join Date
    Aug 2007
    Location
    127.0.0.1
    Posts
    900
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    53

    Thumbs up A new exploit discovered, might help in cracking 1.1.1 soon

    It looks like the dev team is up to something. I have been following them over at IRC and it looks like Mobile Safari on both the touch and the iPhone are suffering from a one year old TIFF exploit.

    Basically, opening a carefully crafted TIFF image will crash mobile safari, causing a buffer overflow and allow for arbitrary code execution. This same exploit was used more than 1.5 years ago to crack the PSP firmware.


    EDIT: Stop posting retarded questions on the irc dev channel. The dev channel is only for iPhone developers/hackers. Post generic iphone/unlocking questions to #iphone or #iphone-tards

    EDIT 2: The exploit wasn't discovered by the Dev team. It was discovered by PSP hacker Niacin. It was posted in the dev channel though.

    EDIT 3: See page 10 for updates from Niacin.
    Last edited by Locked; 10-07-2007 at 09:34 PM. Reason: updates



  2. #2
    Rookie Array

    Join Date
    Sep 2007
    Posts
    17
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default

    Good news!!!

  3. #3
    Senior Professional Array tetsu's Avatar

    Join Date
    Sep 2007
    Posts
    387
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    27

    Default

    great.. hope we can get somewhere soon!

  4. #4
    Rookie Array

    Join Date
    Sep 2007
    Posts
    18
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default

    Nice!!!!!!

  5. #5
    Professional Array

    Join Date
    Aug 2007
    Posts
    76
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    10

    Default

    You can do it Dev Team.


  6. #6
    Advanced Array Fraggle007's Avatar

    Join Date
    Sep 2007
    Posts
    35
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default

    Watch this wiki for updates on this specific proposal

    http://www.touchdev.net/wiki/Decrypt...uffer_Overflow

  7. #7
    mr_
    mr_ is offline
    Senior Professional Array

    Join Date
    Sep 2007
    Posts
    100
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    12

    Default

    that could be big! upgrading leaves the /var partition alone, so you could install a whole BSD subsystem and ssh/sftp in the /var partition, upgrade, and employ this exploit to copy everything to /bin and run it... even if 1.1.1 will only run signed applications, you can write code through the exploit to peek and see what's there. If this works, 1.2.1 MobileSafari will run as a contained process with very few permissions .
    Last edited by mr_; 10-04-2007 at 02:02 AM.

  8. #8
    Amazingly Knowledgeable Array Locked's Avatar

    Join Date
    Aug 2007
    Location
    127.0.0.1
    Posts
    900
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    53

    Default

    Quote Originally Posted by mr_ View Post
    that would be huge news! upgrading leaves the /var partition alone, so you could install a whole BSD subsystem and ssh/sftp in the /var partition, upgrade, employ this exploit to copy everything to /bin, and we are in business!!!
    Exactly! Let's wait and see. The next few hours are going to be exciting !!

  9. #9
    Senior Professional Array

    Join Date
    Sep 2007
    Posts
    159
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    14

    Default

    This is great news...... Go dev team

  10. #10
    Senior Professional Array Dimsum's Avatar

    Join Date
    Sep 2007
    Posts
    162
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    15

    Default

    wow - thats a great find!!!

    i only wish Dark_AleX / M33 of PSP firmware cracking fame was an iPhone user! lol


 

 
Page 1 of 12 1234567891011 ... LastLast

Similar Threads

  1. AT&T cracking down on tethering?
    By unclemiltie in forum iPhone 4
    Replies: 5
    Last Post: 03-21-2011, 05:23 PM
  2. need help with cracking avid mc!!!!
    By chopmeat in forum Installation
    Replies: 0
    Last Post: 07-23-2009, 07:37 PM
  3. i discovered how to screenshot on 2.0.2
    By seseberg in forum General
    Replies: 12
    Last Post: 08-28-2008, 06:18 PM
  4. [Information] Hacking is not Cracking Here
    By n350z in forum General
    Replies: 2
    Last Post: 03-23-2008, 04:10 PM
  5. Downgrade From 4.6 to 3.9 Discovered?
    By Kayser Sose in forum iPhone "2G" (Rev. 1)
    Replies: 15
    Last Post: 11-27-2007, 07:43 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
Powered by vBulletin®
Copyright © 2014 vBulletin Solutions, Inc. All rights reserved.
Search Engine Friendly URLs by vBSEO
(c) 2006-2012 Hackint0sh.org
All times are GMT +2. The time now is 05:24 AM.
twitter, follow us!