• Your favorite

    Apple

    ,

    iPhone

    ,

    iPad

    ,

    iOS

    ,
    Jailbreak
    , and
    Cydia
    site.
  • More Untethered Jailbreak Vulnerabilities Found by Pod2G


    @pod2g, recent iDevice hacker (not part of the Dev-Team), has recently shed some light on more vulnerabilities he has found that will allow for untethered jailbreaking. This brings us even closer to the untethered tools we've been waiting for, as now we are 100% sure that both teams have found working exploits.

    With this news, brings a more positive outlook on what we can see for jailbreaking iOS 4.3. Aside form the ASLR security, its looking like iOS 4.3's jailbreak tool, when it becomes available, could be untethered right from the start. Fingers crossed.

    Keep in mind that this is only vulnerabilities that have been found, and that there will still be some additional work required before they can be put to use by either team.

    Until then, things are looking very positive.

    Source: Twitter / pod2g: Hey, another untethered vu ...
    This article was originally published in forum thread: More Untethered Jailbreak Vulnerabilities Found by Pod2G started by nickhesson View original post
    Comments 117 Comments
    1. Simon's Avatar
      Simon -
      Quote Originally Posted by CynicalDriver View Post
      I am confusing nothing. I switched to shatter in response to another poster's comment.

      A boot-rom does not need a complete hardware revision, just a different chip installed at the time of manufacture. For all we know.. The VeriPhone already has the fix.

      As for the leak... That proves my point about hackers not keeping quiet. These kinds of hackers are motivated by two things;

      Glory: Which means they have to proclaim victory, which leads to bickering and leaks.

      Personal product usability: Which means they started because they wanted to get different functionality. SOME stay quiet until they're done. MOST become glory-mongers the moment they get a small breakthrough.

      Assume what you like, but reality is reality. I know plenty of ways Apple could stop shatter WITHOUT a rom change. They would just have a lot of bad PR and p*'d JBers if they put them into practice.
      I didn't say it would take a complete hardware revision. But it would take a bootrom hardware revision similar to what happened with old and new bootrom 3GS which is what you just said in the first part of your response.

      Let's hope they haven't patched it with the verizon iPhone. You are right though they may have done so.

      As for the last part you are probably right. There may be ways for apple to technically be able to close these exploits with some type of software update to the bootrom. They would never do it though because of the risk associated with bricking the phone. So the reality of that is that if they are unwilling to do such a patch with software then a hardware bootrom revision is all that will patch a bootrom exploit.
    1. CynicalDriver's Avatar
      CynicalDriver -
      Quote Originally Posted by DRFP View Post
      LOL Maybe you don't matter.............

      But heck yes I matter and so do a lot of others if you want to be a snob be one, but its people like me who buy and use Iphones that matters.
      a JB is released. It will cost them money not to release a JB in the long run, money I have spent in the past and will in the future.
      If JB dev wants people to buy software in Cydia and elsewhere then it's only prudent that

      This attitude sucks you know.

      If this continues then Iphone will fail.................

      There is ANdroid you know, there's a choice.


      First: yes there is a choice, and you are free to make it.

      Second: I don't matter to them. The difference between you and I is, I know that.

      Third: You are assuming that JB devs are the same as software devs... They are not! Most Cydia apps come as a result of Apple limitations, NOT as a desire to get rich. JB devs matter to JB APP devs, but not always the other way around.

      You DON'T have to JB to write your own software the way you like, only to distribute it outwards. Apple limitations on installation, and supply chain are the main barriers, not coding.

      Finally: I'm not a snob, I'm a realist.
    1. CynicalDriver's Avatar
      CynicalDriver -
      Quote Originally Posted by x98car View Post
      I didn't say it would take a complete hardware revision. But it would take a bootrom hardware revision similar to what happened with old and new bootrom 3GS which is what you just said in the first part of your response.

      Let's hope they haven't patched it with the verizon iPhone. You are right though they may have done so.

      As for the last part you are probably right. There may be ways for apple to technically be able to close these exploits with some type of software update to the bootrom. They would never do it though because of the risk associated with bricking the phone. So the reality of that is that if they are unwilling to do such a patch with software then a hardware bootrom revision is all that will patch a bootrom exploit.
      Fair point on the bricking issue, that's kinda where I was going with the bad PR. The bottom line is, if Apple REALLY wanted to stop JB for good... They could. I won't discuss it and give them ideas that they may not have thought of (doubt it) but one method would be so simple we would cry.
    1. Simon's Avatar
      Simon -
      Ya, I get what you were trying to say
    1. Proofsc's Avatar
      Proofsc -
      Jailbreaks were made by those who wanted root access but were kind enough to release them to us. They hold back exploits because they dnt want to be constantly looking for new exploits. We are lucky they ask for donations instead of actually charging for them. As for the 4.2.1 jb, yes its teathered but as long as u never reboot ur phone guess wat its unteathered. The only time mine has rebooted was from the intial jb. So everyone needs to quit crying or learn how to do it yourself because in the end the only people that matter are those discovery the exploits.
    1. confucious's Avatar
      confucious -
      This is the first time I've looked here for a while.
      Makes me realise why I left.
      The ignorance and arrogance horrifies me.
      I always used to be able to persuade my friends that the ignorance was confined to a few.
      Now I'm not so sure. No wonder Mr Hotz left. Others are likely too.
      I've always done my best to persuade them otherwise but lost my faith.
      I was asked to look back in January - I have, and this is what I find?
      My brother is trying to persuade me all is OK in Egypt - maybe compared to here it is.
    1. Brownstain's Avatar
      Brownstain -
      Please, please, please, release the greenpois0n 4.2.1 jailbreak soon.....pleeeease!!!!!!
    1. confucious's Avatar
      confucious -
      Quote Originally Posted by Brownstain View Post
      Please, please, please, release the greenpois0n 4.2.1 jailbreak soon.....pleeeease!!!!!!
      Need I say more?
    1. Brownstain's Avatar
      Brownstain -
      Quote Originally Posted by confucious View Post
      Need I say more?
      Actually, I prefer you say nothing.
    1. confucious's Avatar
      confucious -
      Quote Originally Posted by Brownstain View Post
      Actually, I prefer you say nothing.
      Exactly.

      Kyle - idiots like this is why I won't be back.
    1. Brownstain's Avatar
      Brownstain -
      Quote Originally Posted by confucious View Post
      Exactly.

      Kyle - idiots like this is why I won't be back.
      Bye bye
    1. confucious's Avatar
      confucious -
      This is why you have 3 posts. Your stupidity shines through.
    1. Brownstain's Avatar
      Brownstain -
      Quote Originally Posted by DRFP View Post
      Like your whining is any better? LOL

      as I said there are those of us who have a right to be upset.


      We told a JB by Christmas
      Then we are shown a JB last week or so
      then we read a JB may be held because of 4.3

      then we read oh you can have it if you have blobs saved

      and then..................................

      you see I agree the Dev is great and all but all this stuff creates drama and honestly PO's some people, I'm mad because a lot of members here feel obligated to tell us to basically shut up and accept it.
      Thats not right.

      We may not all be programmers, but thats no different then we are all not Doctors and Auto mechanics either, we all do things for each other, and as much as I have to listen to what a patient wants, the Developers have to listen to what people want.

      Posting on a site like MMYI is where we can vent and feel like we get to communicate with the JB community.

      Its wrong to tell everyone to Shut up

      Its also wrong to call the Dev team names and such.

      We need to discuss these issues with in reason.

      Nicely put
    1. CynicalDriver's Avatar
      CynicalDriver -
      Quote Originally Posted by DRFP View Post
      You are what you do,
      Huh?

      Quote Originally Posted by DRFP View Post
      ( are you telling me to get an android so I do not have JB problems, its superior to Iphone in that respect? )
      No, I don't presume to have the power to tell anyone what they should buy. I was just pointing out that you are right, there is a choice.

      If you feel that Android or Windows phones will relieve your stress, feel free. I don't get that wrapped up in "teaser features" between major releases. I'm fine waiting.

      Quote Originally Posted by DRFP View Post
      A true community cares about others in the community,

      You matter to me as others in the community, I care about what people think, why else post on a forum and read?
      Of course I'm interested in what people think. But, don't be mistaken, if I was writing free software, there's no way I'd let the "community" dictate; when, how, and where I release any new products. The very fact that it's free means they still have to go to work, school, family events, or whatever other things life demands. You are not entitled to dictate that I should put a non-profit hobby above my life.

      Quote Originally Posted by DRFP View Post
      Why JB if there are no benefits

      other then unlock

      Apps and customization

      it generates money for Developers,

      But without JB then the community is dead.
      Again, there are probably a /few/ exceptions, but the people who Jail-Break, are different than the people who code apps.

      Quote Originally Posted by DRFP View Post
      My point is the Dev team that does the JB needs to listen to the community.
      [/quote]

      My point is that they really... Don't! They do not need us, we need them. They're not releasing a new iPod, they're releasing a hack, there is no customer review process. It either works, or it doesn't, and if it doesn't... Too bad, try another way from another hacker/team/group.

      Quote Originally Posted by DRFP View Post
      to the other poster, you stop posting telling us to stop being upset, I will not use a tethered JB, I do not sit on my A.. at home ready to rejailbreak with my laptop all day, I work 12 and 18 hour days in a hospital get real........... we need an untethered JB for 4.2 then for 4.3 to be practical for some of us
      I do have to agree with you on this point. I work for a living, and I cannot stop working in the middle of the day to re-JB my phone when it decides to be a piece of yes. I have to reboot/spring my phone at least once every couple days.

      I will not upgrade my iOS until the untethered JB comes out, so I still use 4.1. To suggest that "tethered is fine" is completely ignorant of real world demand on smartphones.
    1. mortopher's Avatar
      mortopher -
      Quote Originally Posted by CynicalDriver View Post
      Finally: I'm not a snob, I'm a realist.
      No, you are a cynic.

      ----------

      I see this site has regressed back into the whining phase once again. It's a shame.

      ----------

      Confucious - I was wondering where you've been... I understand why you left. It's a shame you did.

      Some of you make it seem like tethered iDevices must be rejailbroken on an hourly basis. This is surely not the case. THe ONLY times I've ever had to kick my phone or ipad out of recovery mode were when rebooting due to installing a new app in Cydia, or when it crashed due to my decision to test out BETA versions of apps/tweaks. Whenever I stay away from betas and I don't install certain new apps in Cydia, I can go weeks without having to rerun the jailbreak. Hell, if it's that big of a deal, go buy a cheap used 2G or 3G to keep in your bag as a backup.
    1. Simon's Avatar
      Simon -
      Every persons situation is going to be different on how a tethered jailbreak will affect them. I have a tethered jailbreak on 4.3b2 and just like mortopher I can go weeks without having to reboot. I haven't rebooted since the first day I set it up when 4.3b2 came out. I do understand everyone's case is different though. Some people have jobs where it is required to turn your phone off at certain times. For those I can see how a tethered jailbreak would not work at all.
    1. mortopher's Avatar
      mortopher -
      Quote Originally Posted by DRFP View Post
      I agree some of it is whining, but also some of it is anger.
      They are the same thing, just manifested differently.
    1. LOAD error's Avatar
      LOAD error -
      Quote Originally Posted by DRFP View Post
      yEAH i'M MAD AS hECK

      This whole JB thing with Iphone is really starting to make me look seriously at Android.

      When a platform is becoming comparable with what Apple has ( like Windows 7 has) people start to wonder "Is it worth it?" Anymore.

      2010 was great year for Apple but what is going to happen?

      It easily could be a bad 2011 at the end of the day if Apple messes up and making sure JB is dead would be a monumental Mistake for Apple they are just too arrogant to to see it.
      The whole Ideal is that someone from Cydia not mentioning the name hasn't paid the piper yet..Like any other service, "YOU DON'T PAY, YOU DON'T GET SERVICED"
    1. Lilmatrix's Avatar
      Lilmatrix -
      I was told tht i cn get an untethered with green poison on 4.2.1. Cn sumone help me with this?
    1. mmaboi21's Avatar
      mmaboi21 -
      Quote Originally Posted by DRFP View Post
      Like your whining is any better? LOL

      as I said there are those of us who have a right to be upset.


      We told a JB by Christmas
      Then we are shown a JB last week or so
      then we read a JB may be held because of 4.3

      then we read oh you can have it if you have blobs saved

      and then..................................

      you see I agree the Dev is great and all but all this stuff creates drama and honestly PO's some people, I'm mad because a lot of members here feel obligated to tell us to basically shut up and accept it.
      Thats not right.

      We may not all be programmers, but thats no different then we are all not Doctors and Auto mechanics either, we all do things for each other, and as much as I have to listen to what a patient wants, the Developers have to listen to what people want.

      Posting on a site like MMYI is where we can vent and feel like we get to communicate with the JB community.

      Its wrong to tell everyone to Shut up

      Its also wrong to call the Dev team names and such.

      We need to discuss these issues with in reason.

      You've got some good points but I disagree with "having a right to get mad".

      You Must truly understand that these devs do not get paid for this and yes docs have to listen to their patients(although that is there job and they do get paid for it . These devs sure in you know what do not have to listen to our feedback especially being negative, they do this completely for yours and my enjoyment( and there's of course)

      Also I can't believe you said the developers have to listen to what people want. They sure in you know what do not have to listen to a single person ever.

      You know why...... I won't even answer I'll let you fill in the blanks.

      No offense