Dev-Team Confirms: New Bootrom Defeats 24kpwn

[Paul Daniel Ash]

image via StealthBravo.com

As noted here on MMi last night, new iPhone 3GSes are shipping with an updated bootrom that is resistant to 24kpwn. Dev-Team member MuscleNerd confirms that the new bootrom, iBoot-359.3.2, is no longer vulnerable to the memory segment overrun exploit.

This is the first time Apple has upgraded the bootrom during a normal production cycle, rather than when a new model is introduced. The bootrom is a snippet of code that runs at startup time, and checks on the status of the boot image. It's generally used to verify that the image has not been corrupted, but can also be used to check for unauthorized firmware. The 24kpwn exploit - otherwise known as 0x24000 Segment Overflow - bypassed the signature checks on iBoot and allowed unsigned firmware to be loaded. The new bootrom makes that impossible, so currently shipping 3GS phones cannot be jailbroken until a new exploit is found.

To determine if your new 3GS is running the new bootrom, just check System Profiler while the phone is in DFU mode. Versions of iBoot prior to 359.3.2 should still be able to be jailbroken using known methods.

[aekhamsouk]

1st!

1st!

OMG! you are so lame!

2nd!

[one1]

1st!



OMG! you are so lame!

2nd!

Didn't we discuss a ban for this? (and talking to their self without switching id's?)

[JonFolse]

is the end coming soon? I still have faith

[Poseidon79]

^^^ Did he just quote HIMSELF in his OWN post and call himself lame?! That's a new way to go...

[one1]

^^^ Did he just quote HIMSELF in his OWN post and call himself lame?! That's a new way to go...

No that's screwing up when trying to manage multiple id's and pwning yourself......which is the only thing in this thread that can still be pwned without a 24k exploit.

[aekhamsouk]

Didn't we discuss a ban for this? (and talking to their self without switching id's?)

it was a joke, get a life!

i think you should get banned for having multiple ID's...

[se7endreams]

sad news

[Miniver Cheevy]

I must say, stunts like this are driving me to more open platforms such as Android.

I use an iPod Touch 1G and was considering an iPhone in the future, but if I can't do what I want with my device as I can now with a jailbreak, then the deal's off. All there is to it.

[gthugballin]

Lol I just got a 3gs yesterday and blackra1n'd it but anways 24k pwn may be out...but that just leaves room for a new 25k pwn... maybe lol...iono the dev team or someone usually finds something. So I say we keep our heads up, apple can't keep the iphones unhackable forever.

(Who remembers when iphones first came out...and installer was the only way to get apps )

[Channan]

1st!



OMG! you are so lame!

2nd!

lol I thought that was pretty funny.

[wakka102]

I give it a few months, the devteam will find a new exploit. They always say to be careful when upgrading as you may not be able to jailbreak in the future and then they ALWAYS find something new so I have faith in them. Any security can be broken it's just a matter of time.

[Jahooba]

I can't think of a single device that's not exploitable. Someone will find a way to do it, especially now that there's money to be had from generous jailbreakers and paid-for apps on Cydia and the like.

People really like their jailbroken device -- I for one liked my iPod, but I LOVE my jailbroken iPod, which in my mind is a completely different device. With customizations it makes it your own (heck, I was even inspired to make my own themes, and not a lot inspires me). I'm not even sure I would use my iPod all that much if it was vanilla -- as it stands I feel naked without my iPod in my pocket.

Anyway, someone will find a way; they always do. It's just a waiting game.

[timbo]

Will this hurt there sales.... what is the JB footprint?

[santaf]

hahaha the person that did the first thing that made me laugh. but also as for this news it's sad news but i guess since my 3Gs is from when they came out this doesn't ruin anything for me? is that what it says? none the less i bet someone will find another work around. it always happens.

[lkailburn]

does anyone know if this applies to the newest ipod touches?

-Luke

[l0k0]

IF i had my guess. I would say it has to do with every JB able device that apple has had to offer. I dont think they would spend the money on defeating the iboot on just the iphone itself. Pretty sure they would have incorporated the same technology in other products as well. Just seems like the logical thing for them to do. But as i said, thats my guess.

On the other hand we have known since day one that the change in iboot could render the JB. And for years it has worked in our favor as Apple has just been making small patches in firmware. All they did was up the ante this go around. And of course they have slowed the JBers down alot with this move. In due time (6months or maybe a year). Someone will find a new exploit for the new iboot and it will be back to the cat and mouse games.

[[AnubiS]]

They can't lock the iPhone forever, it's a good business for them because of the people that like the phone to be jailbroken. Surely The Dev-Team will find a new exploit.

[hackint0uch]

This may be just me but if I couldn't unlock I wouldn't have an iPhone so this has got to lower apple's sales. READ THIS APPLE READ...

PLZ Give up cat and mouse Apple. DEV Team will always win (I Hope) allowing JB boost sales

Why is apple so against Jailbreaking anyways?

What is the foundation for developing jailbreaks? I would like to try it.

[extremzocker]

we are gathered here today to give the 24kpwn its honours...
so sad :.(