Overclock.net › Forums › Industry News › Software News › [cnet] iPhone jailbreak could double as security hole
New Posts  All Forums:Forum Nav:

[cnet] iPhone jailbreak could double as security hole

post #1 of 7
8/3/10 at 11:49am
Thread Starter 
Quote:
The jailbreak for the iPhone released over the weekend may have exposed a flaw in the iPhone's mobile Safari browser.

Unlike previous jailbreaks, which required the iPhone to be connected to a computer to run the software update, the latest jailbreak, posted by the iPhone Dev Team at Jailbreakme.com, is accomplished via the Safari browser loaded on the device.

But the fact that it can be performed just through Safari, and the way it's done, points to a larger problem, as several CNET readers and listeners wrote to us to point out Tuesday. It means potentially anyone could control your iPhone (or iPod Touch or iPad) just by visiting a certain Web page. A site can present the exploit as a simple PDF link, which requires no explicit user action short of clicking a link. It can then launch an exploit that takes advantage of the way the PDF viewer loads fonts.

The end result is that the program can then have unrestricted access to your iPhone or iPad or iPod Touch on virtually all versions of iPhone firmware, short of the iOS 4.1 beta, currently in the hands of developers for testing.
Source
$700 Non-Gaming Beast
(13 items)
  		  
CPUMotherboardGraphicsRAM
Intel i5-2500K @ 4000 Mhz - 1.190v MSI Z68MA-ED55 (B3) Intel HD Graphics 3000 @ 1400 Mhz Mushkin Ridgeback 4GB @ 1600 Mhz 6-8-6-24 - 1.645v 
Hard DriveOptical DriveOSMonitor
Crucial C300 64GB + Samsung F3 1TB Samsung SH-222AB Burner Windows 7 Ultimate x64 ASUS VE247H 23.6" LED 1920x1080 
KeyboardPowerCaseMouse Pad
Microsoft Wired Keyboard 600 Antec HCG-400 400W NZXT Crafted Series Vulcan Microsoft Comfort Optical Mouse 3000 
  hide details  
Reply
$700 Non-Gaming Beast
(13 items)
  		  
CPUMotherboardGraphicsRAM
Intel i5-2500K @ 4000 Mhz - 1.190v MSI Z68MA-ED55 (B3) Intel HD Graphics 3000 @ 1400 Mhz Mushkin Ridgeback 4GB @ 1600 Mhz 6-8-6-24 - 1.645v 
Hard DriveOptical DriveOSMonitor
Crucial C300 64GB + Samsung F3 1TB Samsung SH-222AB Burner Windows 7 Ultimate x64 ASUS VE247H 23.6" LED 1920x1080 
KeyboardPowerCaseMouse Pad
Microsoft Wired Keyboard 600 Antec HCG-400 400W NZXT Crafted Series Vulcan Microsoft Comfort Optical Mouse 3000 
  hide details  
Reply
post #2 of 7
8/3/10 at 11:53am
Meh, quick "fix"

http://www.macstories.net/iphone/how...vulnerability/
Quad core X2 5000 :D
(13 items)
  		  
CPUMotherboardGraphicsRAM
AMD Athlon X2 5000+ (4 cores unlock) @ 3.29GHz Gigabyte MA785G-UD3H Galaxy GTX 460 4GB DDR2 Mushkin Blackline 
Hard DriveOptical DriveOSMonitor
1 250GB Seagate and 1 external 160 GB Seagate LG Super-multidrive Ubuntu 11.10 x86_64/Windows 7 x64 22" ViewSonic 1080p Widescreen 
KeyboardPowerCaseMouse
Logitech Wireless Keyboard Y-RC14 Rosewill Performance RP550-2 @ 550w Coolermaster Centurion 531 Logitech MX700 
Mouse Pad
None 
View all
  hide details  
Reply
Quad core X2 5000 :D
(13 items)
  		  
CPUMotherboardGraphicsRAM
AMD Athlon X2 5000+ (4 cores unlock) @ 3.29GHz Gigabyte MA785G-UD3H Galaxy GTX 460 4GB DDR2 Mushkin Blackline 
Hard DriveOptical DriveOSMonitor
1 250GB Seagate and 1 external 160 GB Seagate LG Super-multidrive Ubuntu 11.10 x86_64/Windows 7 x64 22" ViewSonic 1080p Widescreen 
KeyboardPowerCaseMouse
Logitech Wireless Keyboard Y-RC14 Rosewill Performance RP550-2 @ 550w Coolermaster Centurion 531 Logitech MX700 
Mouse Pad
None 
View all
  hide details  
Reply
post #3 of 7
8/3/10 at 11:59am
Whoops, nevermind. Misread the article.
Edited by ForumViewer - 8/3/10 at 12:02pm
27" iMac, Late 2009
(15 items)
 
Gaming Rig
(15 items)
  		 
CPUGraphicsRAMHard Drive
Intel 3.06 GHz C2D Radeon HD4670 12GB 1067MHz DDR3 1TB 7200RPM 
Optical DriveCoolingCoolingOS
8x SuperDrive Air Air OS X 10.7.2 
MonitorKeyboardPowerCase
27" 2560 x 1440 LED Wireless BT 310W PSU Aluminum Enclosure 
MouseMouse Pad
Magic Mouse None 
View all
CPUMotherboardGraphicsRAM
Intel Core 2 Quad Q6600 Maximus Formula NVIDIA GeForce GTX 480 G.Skill 2x4GB DDR2 
Hard DriveOptical DriveCoolingOS
3x 500GB WD  Lite-On Air Windows 7 x64 HP 
MonitorKeyboardPowerCase
Gateway 24" 1900x1200 Razr Lycosa Corsair 750M Antec P180 
MouseMouse PadAudio
Razr DeathAdder Razr eXactMat Creative X-Fi Titanium 
View all
  hide details  
Reply
27" iMac, Late 2009
(15 items)
 
Gaming Rig
(15 items)
  		 
CPUGraphicsRAMHard Drive
Intel 3.06 GHz C2D Radeon HD4670 12GB 1067MHz DDR3 1TB 7200RPM 
Optical DriveCoolingCoolingOS
8x SuperDrive Air Air OS X 10.7.2 
MonitorKeyboardPowerCase
27" 2560 x 1440 LED Wireless BT 310W PSU Aluminum Enclosure 
MouseMouse Pad
Magic Mouse None 
View all
CPUMotherboardGraphicsRAM
Intel Core 2 Quad Q6600 Maximus Formula NVIDIA GeForce GTX 480 G.Skill 2x4GB DDR2 
Hard DriveOptical DriveCoolingOS
3x 500GB WD  Lite-On Air Windows 7 x64 HP 
MonitorKeyboardPowerCase
Gateway 24" 1900x1200 Razr Lycosa Corsair 750M Antec P180 
MouseMouse PadAudio
Razr DeathAdder Razr eXactMat Creative X-Fi Titanium 
View all
  hide details  
Reply
post #4 of 7
8/4/10 at 1:01am
This is a non issue. Just remove the bumper and "lightly touch" the antenna a certain way. That will fix the security hole by disconnecting you from the network
I just saw other article about Jailbreaking for iPad from aneesoft. some people who want to know more can read it.
http://www.aneesoft.com/tutorials/ip...-for-ipad.html
Reply
Reply
post #5 of 7
8/4/10 at 1:20am
  • nathris
  • 𝖄𝖊 𝕺𝖑𝖉𝖊 𝕿𝖎𝖙𝖑𝖊
Quote:
Originally Posted by Nburnes View Post
Ironically the "fix" is only available by jailbreaking your phone.
I am not a Corsair fanboy :/
(19 items)
  		  
CPUMotherboardGraphicsRAM
Core i5 750 4016 MHz EVGA P55-SLI FTW Gigabyte GTX 460 1GB Corsair Dominator 
RAMHard DriveHard DriveHard Drive
Kingston Hyper-X OCZ Vertex 3 WD6401AALS Seagate 7200.10 
CoolingOSOSMonitor
Corsair H50 Windows 7 Pro x64 [SSD] Xubuntu [WD Black] LG W2442PA-BF 
MonitorKeyboardPowerCase
Dell Ultrasharp U2312HM Microsoft Sidewinder X4 Corsair HX750W Corsair Graphite 600T 
Mouse
Logitech G5 
View all
  hide details  
Reply
I am not a Corsair fanboy :/
(19 items)
  		  
CPUMotherboardGraphicsRAM
Core i5 750 4016 MHz EVGA P55-SLI FTW Gigabyte GTX 460 1GB Corsair Dominator 
RAMHard DriveHard DriveHard Drive
Kingston Hyper-X OCZ Vertex 3 WD6401AALS Seagate 7200.10 
CoolingOSOSMonitor
Corsair H50 Windows 7 Pro x64 [SSD] Xubuntu [WD Black] LG W2442PA-BF 
MonitorKeyboardPowerCase
Dell Ultrasharp U2312HM Microsoft Sidewinder X4 Corsair HX750W Corsair Graphite 600T 
Mouse
Logitech G5 
View all
  hide details  
Reply
post #6 of 7
8/4/10 at 2:50am
  • Joined: Jun 2007
  • Location: Ballarat, Australia
  • Posts: 12,918
  • Rep: 376 (Unique: 298)
  • Folding Team Rank: 635
  •  
    Name Team Rank Points / May Work Units / May
    brutuz 635 2,418,532 / 0 4,071 / 0
       
  • Select All Posts By This User
Ouch, but this (from what I can see) is Adobe's fault, and not Apple...But I bet Apple will cop the hate.
Curse of the Pharaohs
(19 items)
  		  
CPUMotherboardGraphicsRAM
AMD FX-4170 Gigabyte GA-990FXA-UD3 GTX 470 G.Skill Ares F3-1866C9D-8GAB 
Hard DriveHard DriveHard DriveHard Drive
Crucial M4 256GB Samsung Spinpoint F3 1TB Samsung Spinpoint F1 500GB Samsung Spinpoint F4 EcoGreen 2TB 
Optical DriveCoolingCoolingOS
Pioneer DVR-215BLK Koolance VID-NX470, Rasa 750 Pump, XSPC EX120, ... TRUE with 120mm Panaflo Windows 7 x86_64/Arch Linux x86_64 
MonitorKeyboardPowerCase
BenQ G2220HD Ducky DK9008 Shine, White LED (Cherry Browns) Silverstone Strider Plus 600w Antec P183 V3 
MouseMouse PadAudio
Logitech G700 Razer eXactmat Speed ASUS Xonar DX 
View all
  hide details  
Reply
Curse of the Pharaohs
(19 items)
  		  
CPUMotherboardGraphicsRAM
AMD FX-4170 Gigabyte GA-990FXA-UD3 GTX 470 G.Skill Ares F3-1866C9D-8GAB 
Hard DriveHard DriveHard DriveHard Drive
Crucial M4 256GB Samsung Spinpoint F3 1TB Samsung Spinpoint F1 500GB Samsung Spinpoint F4 EcoGreen 2TB 
Optical DriveCoolingCoolingOS
Pioneer DVR-215BLK Koolance VID-NX470, Rasa 750 Pump, XSPC EX120, ... TRUE with 120mm Panaflo Windows 7 x86_64/Arch Linux x86_64 
MonitorKeyboardPowerCase
BenQ G2220HD Ducky DK9008 Shine, White LED (Cherry Browns) Silverstone Strider Plus 600w Antec P183 V3 
MouseMouse PadAudio
Logitech G700 Razer eXactmat Speed ASUS Xonar DX 
View all
  hide details  
Reply
post #7 of 7
8/4/10 at 3:26am
  • Joined: Dec 2009
  • Location: Miami, Florida
  • Posts: 2,696
  • Rep: 311 (Unique: 266)
  • Trader Rating: 26
  • Folding Team Rank: 1,808
  •  
    Name Team Rank Points / May Work Units / May
    munkypoo7 1,808 363,051 / 0 307 / 0
       
  • Select All Posts By This User
Quote:
Originally Posted by nathris View Post
Ironically the "fix" is only available by jailbreaking your phone.
Delicious irony at that
System Title here.
(16 items)
  		  
CPUMotherboardGraphicsRAM
i7 920 D0, 3913B166 EVGA X58 SLI3 (131-GT-E767-TR) EVGA GTX 580 SC Corsair Dominator 6x2GB 1600 
Hard DriveHard DriveOptical DriveCooling
Corsair Force 3 120GB Western Digital Caviar Green 1TB Lite-On eNAU108-111 Corsair H80 
OSMonitorKeyboardPower
Windows 7 Enterprise x64 Dell U2311H Ducky Shine Red + White LEDs Corsair HX750 
CaseMouseMouse PadAudio
Silverstone FT01-BW Logitech Performance MX Razer Scarab Creative X-Fi Titanium HD + AudioEngine A2 
View all
  hide details  
Reply
System Title here.
(16 items)
  		  
CPUMotherboardGraphicsRAM
i7 920 D0, 3913B166 EVGA X58 SLI3 (131-GT-E767-TR) EVGA GTX 580 SC Corsair Dominator 6x2GB 1600 
Hard DriveHard DriveOptical DriveCooling
Corsair Force 3 120GB Western Digital Caviar Green 1TB Lite-On eNAU108-111 Corsair H80 
OSMonitorKeyboardPower
Windows 7 Enterprise x64 Dell U2311H Ducky Shine Red + White LEDs Corsair HX750 
CaseMouseMouse PadAudio
Silverstone FT01-BW Logitech Performance MX Razer Scarab Creative X-Fi Titanium HD + AudioEngine A2 
View all
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Software News
Overclock.net › Forums › Industry News › Software News › [cnet] iPhone jailbreak could double as security hole