• Your favorite

    Apple

    ,

    iPhone

    ,

    iPad

    ,

    iOS

    ,
    Jailbreak
    , and
    Cydia
    site.
  • Dev-Team Confirms: New Bootrom Defeats 24kpwn

    image via StealthBravo.com

    As noted here on MMi last night, new iPhone 3GSes are shipping with an updated bootrom that is resistant to 24kpwn. Dev-Team member MuscleNerd confirms that the new bootrom, iBoot-359.3.2, is no longer vulnerable to the memory segment overrun exploit.

    This is the first time Apple has upgraded the bootrom during a normal production cycle, rather than when a new model is introduced. The bootrom is a snippet of code that runs at startup time, and checks on the status of the boot image. It's generally used to verify that the image has not been corrupted, but can also be used to check for unauthorized firmware. The 24kpwn exploit - otherwise known as 0x24000 Segment Overflow - bypassed the signature checks on iBoot and allowed unsigned firmware to be loaded. The new bootrom makes that impossible, so currently shipping 3GS phones cannot be jailbroken until a new exploit is found.

    To determine if your new 3GS is running the new bootrom, just check System Profiler while the phone is in DFU mode. Versions of iBoot prior to 359.3.2 should still be able to be jailbroken using known methods.
    This article was originally published in forum thread: Dev-Team Confirms: New Bootrom Defeats 24kpwn started by Paul Daniel Ash View original post
    Comments 102 Comments
    1. aekhamsouk's Avatar
      aekhamsouk -
      1st!

      Quote Originally Posted by aekhamsouk View Post
      1st!
      OMG! you are so lame!

      2nd!
    1. one1's Avatar
      one1 -
      Quote Originally Posted by aekhamsouk View Post
      1st!



      OMG! you are so lame!

      2nd!
      Didn't we discuss a ban for this? (and talking to their self without switching id's?)

    1. JonFolse's Avatar
      JonFolse -
      is the end coming soon? I still have faith
    1. Poseidon79's Avatar
      Poseidon79 -
      ^^^ Did he just quote HIMSELF in his OWN post and call himself lame?! That's a new way to go...
    1. one1's Avatar
      one1 -
      Quote Originally Posted by Poseidon79 View Post
      ^^^ Did he just quote HIMSELF in his OWN post and call himself lame?! That's a new way to go...
      No that's screwing up when trying to manage multiple id's and pwning yourself......which is the only thing in this thread that can still be pwned without a 24k exploit.
    1. aekhamsouk's Avatar
      aekhamsouk -
      Quote Originally Posted by one1 View Post
      Didn't we discuss a ban for this? (and talking to their self without switching id's?)

      it was a joke, get a life!

      i think you should get banned for having multiple ID's...
    1. se7endreams's Avatar
      se7endreams -
      sad news
    1. Miniver Cheevy's Avatar
      Miniver Cheevy -
      I must say, stunts like this are driving me to more open platforms such as Android.

      I use an iPod Touch 1G and was considering an iPhone in the future, but if I can't do what I want with my device as I can now with a jailbreak, then the deal's off. All there is to it.
    1. gthugballin's Avatar
      gthugballin -
      Lol I just got a 3gs yesterday and blackra1n'd it but anways 24k pwn may be out...but that just leaves room for a new 25k pwn... maybe lol...iono the dev team or someone usually finds something. So I say we keep our heads up, apple can't keep the iphones unhackable forever.

      (Who remembers when iphones first came out...and installer was the only way to get apps )
    1. Channan's Avatar
      Channan -
      Quote Originally Posted by aekhamsouk View Post
      1st!



      OMG! you are so lame!

      2nd!
      lol I thought that was pretty funny.
    1. wakka102's Avatar
      wakka102 -
      I give it a few months, the devteam will find a new exploit. They always say to be careful when upgrading as you may not be able to jailbreak in the future and then they ALWAYS find something new so I have faith in them. Any security can be broken it's just a matter of time.
    1. Jahooba's Avatar
      Jahooba -
      I can't think of a single device that's not exploitable. Someone will find a way to do it, especially now that there's money to be had from generous jailbreakers and paid-for apps on Cydia and the like.

      People really like their jailbroken device -- I for one liked my iPod, but I LOVE my jailbroken iPod, which in my mind is a completely different device. With customizations it makes it your own (heck, I was even inspired to make my own themes, and not a lot inspires me). I'm not even sure I would use my iPod all that much if it was vanilla -- as it stands I feel naked without my iPod in my pocket.

      Anyway, someone will find a way; they always do. It's just a waiting game.
    1. timbo's Avatar
      timbo -
      Will this hurt there sales.... what is the JB footprint?
    1. santaf's Avatar
      santaf -
      hahaha the person that did the first thing that made me laugh. but also as for this news it's sad news but i guess since my 3Gs is from when they came out this doesn't ruin anything for me? is that what it says? none the less i bet someone will find another work around. it always happens.
    1. lkailburn's Avatar
      lkailburn -
      does anyone know if this applies to the newest ipod touches?

      -Luke
    1. l0k0's Avatar
      l0k0 -
      IF i had my guess. I would say it has to do with every JB able device that apple has had to offer. I dont think they would spend the money on defeating the iboot on just the iphone itself. Pretty sure they would have incorporated the same technology in other products as well. Just seems like the logical thing for them to do. But as i said, thats my guess.

      On the other hand we have known since day one that the change in iboot could render the JB. And for years it has worked in our favor as Apple has just been making small patches in firmware. All they did was up the ante this go around. And of course they have slowed the JBers down alot with this move. In due time (6months or maybe a year). Someone will find a new exploit for the new iboot and it will be back to the cat and mouse games.
    1. [AnubiS]'s Avatar
      [AnubiS] -
      They can't lock the iPhone forever, it's a good business for them because of the people that like the phone to be jailbroken. Surely The Dev-Team will find a new exploit.
    1. hackint0uch's Avatar
      hackint0uch -
      This may be just me but if I couldn't unlock I wouldn't have an iPhone so this has got to lower apple's sales. READ THIS APPLE READ...

      PLZ Give up cat and mouse Apple. DEV Team will always win (I Hope) allowing JB boost sales

      Why is apple so against Jailbreaking anyways?

      What is the foundation for developing jailbreaks? I would like to try it.
    1. extremzocker's Avatar
      extremzocker -
      we are gathered here today to give the 24kpwn its honours...
      so sad :.(
    1. s4mb4's Avatar
      s4mb4 -
      Quote Originally Posted by hackint0uch View Post
      This may be just me but if I couldn't unlock I wouldn't have an iPhone so this has got to lower apple's sales. READ THIS APPLE READ...

      PLZ Give up cat and mouse Apple. DEV Team will always win (I Hope) allowing JB boost sales

      Why is apple so against Jailbreaking anyways?

      What is the foundation for developing jailbreaks? I would like to try it.
      Apple doesn't like it cause some people use JB'd devices to "steal" paid only apps. (and i agree with Apple on that one)