Discuss (advise)(Geohot Gets Key For Ramdisk 2.0) at the iPhone "2G" (Rev. 1) - Hackint0sh.org; from geo's blog
In the KBAG section of the img3 files, you'll find 0x20 bytes ...
(advise)(Geohot Gets Key For Ramdisk 2.0)
from geo's blog
In the KBAG section of the img3 files, you'll find 0x20 bytes after the section header. Decrypt them with the hardware AES engine and get
(this is the 2.0 ramdisk)
Does this mean that there can be a ramdisk expolit for 2.0, which means custom payloads on boot?
as chronic mentions this is a major disovery.
just to follow up, i beleive the major reason that pwnage does not work is because the ramdisk eploit was closed in beta 4 of fw2.0.
Does this mean that with this knowledge pwnage can again work?
Also its is the ramdisk exploit that shut down Zibri and his antics.
Manybe he will resurrect with this knowledge.
By tomtonajeron in forum iOS 4.x (iPhone OS 4.x)
Last Post: 09-30-2011, 01:14 AM
By Maorin in forum iOS 4.x (iPhone OS 4.x)
Last Post: 01-17-2011, 09:44 PM
By osvaldoasn in forum iPhone 3GS
Last Post: 06-25-2009, 05:56 AM
By themysteryninja in forum General
Last Post: 03-14-2008, 05:57 PM
By linusmax in forum iPhone "2G" (Rev. 1)
Last Post: 10-20-2007, 09:41 AM