Your favorite Apple, iPhone, iPad, iOS, Jailbreak, and Cydia site.
01-06-2012, 05:47 PM #1
Jailbroken Apple TV 2 Bug Lets User Access Stranger's Photostream Via MobileMe Account
ModMyi user Brandyn Baker ran into an interesting Apple TV glitch that allows him to view a complete strangers photo stream.
Baker has his Apple TV 2 (firmware 4.4.4) Jailbroken using Seas0nPass like many of you. However, while attempting to sync his Mobile Me account he accidentally entered the wrong email address.
The thing is, the wrong one was someone else's and I can see all their pictures from photo stream! I tried it with some other original names and it worked again...
Apple has yet to respond to our emails regarding the bug.
Any other MMi members out there experience this bug? Has anyone been in contact with Apple about it?
Source: Brandyn Baker
Last edited by Phillip Swanson; 01-06-2012 at 06:01 PM.
The Following User Says Thank You to Phillip Swanson For This Useful Post:
01-06-2012, 07:26 PM #2
01-06-2012, 07:33 PM #3
I assume this only allows one to view photos, but not actually edit anything.
The Following User Says Thank You to szr For This Useful Post:
01-06-2012, 08:00 PM #4
The Following User Says Thank You to havoc0351 For This Useful Post:
01-06-2012, 08:22 PM #5
Phillip Swanson 06:47 PM Today
"Apple has yet to respond to our emails regarding the bug".
Why would apple respond? Since the device is Jailbroken if they did respond it would be in the form of why they don't allow Jailbroken devices. Thus if this turns out to be true and was because of a JB tweak only supports their strong stance against JBing
No prob with mine. However, my apple tv is not Jailbroken
Last edited by kuhndsn; 01-06-2012 at 08:25 PM.
01-06-2012, 08:29 PM #6
01-06-2012, 08:37 PM #7
The Following User Says Thank You to Gaijinboy For This Useful Post:
01-06-2012, 08:56 PM #8
I think apple won't respond because its obvious the jailbreak is the cause of this breach. I also think its very irresponsible to be reporting this huge security flaw at modmyi, that's obviously due to the jail break. Its great, now people have to worry about there photo stream being accessed. What happen to Modmyi? There use to be a interest in protecting users, now its what ever news you can break.....
01-06-2012, 09:30 PM #9
Last edited by msb2011; 01-06-2012 at 09:33 PM.
01-06-2012, 09:36 PM #10
Mr. Swanson....geez I really wouldn't have put that up there until the bug got fixed. Don't you think that will get users starting to try this? Which I may add is illegal??
01-06-2012, 09:39 PM #11
01-06-2012, 10:38 PM #12
i forgot to add that some of them had locked albums so ther IS a way to secure your pictures. and to the person that said its becuase i was jailbroken is wrong! i could do this without the jailbreak as well... so dont jump to conclusions bro!
you cant edit anything and if the user has a lock on the album you need the password, so there is a way to further protect yourself!
you cant acces them if your album has a password for the album!
Last edited by brandyn baker; 01-06-2012 at 11:18 PM.
01-06-2012, 11:46 PM #13
Unless I'm missing something this is not a bug at all!
From the video it looks like all that's happening is viewing another user's public MobileMe galleries.
You can do this out of the box on an AppleTV, or on an iOS device using Apple's own Gallery app! So not so much a bug as an deliberate feature.
An nothing to do with iCloud's photostream.
01-07-2012, 01:32 AM #14
01-07-2012, 03:00 AM #15
apple need to fix it fast or i would say goodbye to Mobile me or even apple new beta products
01-07-2012, 05:26 AM #16
and I quote...
"To view a friends gallery, simply choose their name from your contacts or enter their MobileMe member name and you'll get instant access to their PUBLICLY SHARED PHOTO'S, too."
Apple don't need to do anything, if you haven't set up your photo stream properly or are taking photos you don't want publicly shared you should be taking more care and reading the full description of the service!
People are just moaning because they're to lazy to read what the service actually does!
01-07-2012, 06:28 AM #17
Interesting. I'll have to give it a shot.
*EDIT for 2 reasons:
1. Could the developers of this site please fix the bug that causes only one of the posts to show up when you click the article link from the main page? It doesn't happen all the time, but it happens frequently enough that it's annoying!
2. I guess I won't be giving it a shot since it appears to be a feature available to all ATV2 owners....which makes me wonder why Apple hasn't responded to questions about this with something like, "You big dummy. That's a feature built into the device, whether it's jailbroken or not."
Last edited by AUZambo; 01-07-2012 at 06:34 AM.
01-07-2012, 07:12 AM #18
Bahahahahahhaha you're all stupid and gullible
l2put photos on privateiPhone 4, iOS 5.0.1 Jailbroken
iPad 2, iOS 5.0.1 Clean
01-07-2012, 01:32 PM #19
Apple accountable to research this? You emailed Apple and they have yet to answer you? lol Heads will roll at Apple
if corporate should find out you've been kept waiting. Painful Phil, very painful.
01-07-2012, 06:39 PM #20
Some people are so stupid.
It's Apples responsibility to fix an iCloud vulnerability. If a jailbroken ATV can access a non-jailbroken ATV's stream, then Apples at fault here, and needs to patch it up.
@people saying its jailbreakers fault.