Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Browser-Based Jailbreak For iPhone 4 Released

CmdrTaco posted more than 4 years ago | from the oh-yeah-totally-secure dept.

Cellphones 154

WrongSizeGlass writes "Apple Insider is reporting on a browser-based 'jailbreak' for iPhone 4. Hackers on Sunday released the first 'jailbreak' for the iPhone 4, a browser-based exploit that allows users to run unauthorized code. Unlike previous jailbreaks, which required users to run software on their Mac or PC and tether their iPhone to their computer, the latest hack is done entirely within the Safari browser. Users simply visit the URL to begin the process, which modifies the iOS mobile operating system found on the iPhone, iPod touch and iPad. Some users have reported that the modification results in broken MMS and FaceTime functionality. This jailbreak does not work on iPads running iOS 3.2.1. "

Sorry! There are no comments related to the filter you selected.

Apple Insider? Pah! (5, Informative)

Richard_at_work (517087) | more than 4 years ago | (#33109016)

This made the BBC news website front page - http://www.bbc.co.uk/news/technology-10836692 [bbc.co.uk]

Now, just need a fix for iOS4 being slow and shit on the iPhone 3G....

Re:Apple Insider? Pah! (4, Informative)

dwightk (415372) | more than 4 years ago | (#33109030)

Re:Apple Insider? Pah! (4, Informative)

Vectormatic (1759674) | more than 4 years ago | (#33109142)

just tried that on my ipod (which is basically iphone 3g hardware), and loading the ipod-app still takes noticable time, rather then being instantanious in 3.1.3

i really regret upgrading the ios 4, the only added function i can find is threaded email (of which apple's implementation SUCKS), and i got a serious performance drop

Re:Apple Insider? Pah! (5, Interesting)

Richard_at_work (517087) | more than 4 years ago | (#33109204)

Sod loading anything, my 3G takes a noticeable period of time to react to UI inputs, screen rotations et al when it didn't under the previous OS. iOS4 sucks for the 3G, I don't know why Apple included it in the release.

Re:Apple Insider? Pah! (2, Interesting)

Vectormatic (1759674) | more than 4 years ago | (#33109262)

hmm, i havent noticed serious input lag, just that safari doing loading wont respond at all to inputs, and apps like ipod-app hang for ~5 secs when you open them

i hope they fix it, if they dont however, i wont care all that much, in a few months my ancient symbian powered nokia will be replaced by a HTC android device, which will also make my ipod redundant

Re:Apple Insider? Pah! (1)

Nerdfest (867930) | more than 4 years ago | (#33109662)

They included it so people would buy new hardware would be my guess.

Re:Apple Insider? Pah! (2, Insightful)

Lumpy (12016) | more than 4 years ago | (#33109670)

I do...

iAds.

Re:Apple Insider? Pah! (2, Insightful)

nurb432 (527695) | more than 4 years ago | (#33111276)

I don't know why Apple included it in the release.

Damned if you do, damned if you don't.

Re:Apple Insider? Pah! (2, Insightful)

jimboindeutchland (1125659) | more than 4 years ago | (#33109260)

I just tried it too. I noticed a definite improvement in performance across all apps. The music app still takes forever to launch but it's better than it was with spotlight enabled. I don't think I've ever used spotlight on my iPod so disabling was a small price to pay for a bit of extra performance and probably better battery life.

I agree with everything you've said but your post makes it sound like disabling spotlight doesn't help at all which might discourage people from trying this hack.

Re:Apple Insider? Pah! (1)

Vectormatic (1759674) | more than 4 years ago | (#33109368)

well, just played a bit more, and it looks like ipod-launchtime is down to ~1 second, still noticably slower then before the ios4 update (and in my opinion completely unacceptable for a device sold as a music player), but this does help.

Perhaps i'll try rebooting the thing as well..

Re:Apple Insider? Pah! (1)

Kenz0r (900338) | more than 4 years ago | (#33111016)

There is a video tutorial on cnet tv [cnet.com] that shows you how to downgrade a 3G if you regret installing iOS4.

Do so at your own risk, YMMV, etc...

Re:Apple Insider? Pah! (4, Informative)

kdogg73 (771674) | more than 4 years ago | (#33109254)

Now, just need a fix for iOS4 being slow and shit on the iPhone 3G....

Try doing a hard reset [cultofmac.com] to the 3G phone x2. My wife's phone was unusable after the iOS4 update. This did the trick. It's worth a try.

Re:Apple Insider? Pah! (0)

Anonymous Coward | more than 4 years ago | (#33109372)

We also need is a fix for people who try to install Windows 7 on their old 386 and complain when it won't work right. Oh wait, people don't do that.

If your hardware is two or more iterations out of date please don't complain if the latest OS isn't great on it. Either upgrade your device or downgrade your OS.

That said, a full restore and turning off spotlight completely helps quite a bit.

Re:Apple Insider? Pah! (1, Insightful)

Nerdfest (867930) | more than 4 years ago | (#33109696)

I'm terribly sorry, I thought Apple "Just Works". Turns out that's true with iOS 4 on the 3G, but in a different way.

Re:Apple Insider? Pah! (0, Redundant)

mini me (132455) | more than 4 years ago | (#33111666)

The iPhone 4 only became available three days ago. iOS 4 became available over a month ago. The iPhone 3G was only one generation behind the currently available model up until last week, and that was if you could even get your hands on one.

Re:Apple Insider? Pah! (2, Insightful)

Lumpy (12016) | more than 4 years ago | (#33109652)

Disable the damn search junk you dont use anyways. IT sped my wifes 3G up a lot.

If there was one thing I wish the jailbreaking community would od is submit a patch to remove the useless search on the iphone.

Re:Apple Insider? Pah! (2, Interesting)

crispy_one (972049) | more than 4 years ago | (#33110066)

Tell me that Steve Jobs did not write this article... http://www.computerandvideogames.com/article.php?id=258165 [computeran...ogames.com]

A jailbreak for the iPhone 4 has been engineered and released by hackers, meaning that dodgy users can gain access to all kinds of unofficial content.

Re:Apple Insider? Pah! (1)

rjch (544288) | more than 4 years ago | (#33110266)

Now, just need a fix for iOS4 being slow and shit on the iPhone 3G....

Apple has already released a fix for this. It's called upgrading to an iPhone 4.

At least you put the warning there (-1, Offtopic)

Anonymous Coward | more than 4 years ago | (#33110316)

The BBC's new "global vision language" makes my eyes bleed!

Re:Apple Insider? Pah! (1)

bjoast (1310293) | more than 4 years ago | (#33111128)

Now, just need a fix for iOS4 being slow and shit on the iPhone 3G....

It seems like Apple is already looking at the problem [appleinsider.com] .

Re:Apple Insider? Pah! (1)

nurb432 (527695) | more than 4 years ago | (#33111236)

Now, just need a fix for iOS4 being slow and shit on the iPhone 3G....

There is a fix: upgrade the device. If you had done your research you would have known upfront the CPU in the 3g ( and 2g ) doesn't have the power needed. Only the 3Gs had the power of the existing devices.

Does the jailbreak patch the exploit? (5, Interesting)

Gopal.V (532678) | more than 4 years ago | (#33109032)

If a website can run unauthorized code by just visiting a page, does the jailbreak "innoculate" against the exploit it uses?

Or would apple's fix for the bug also break the jailbreak? (they'll do that, I guess).

Re:Does the jailbreak patch the exploit? (1)

xded (1046894) | more than 4 years ago | (#33109548)

That's what they did with the previous jailbreakme.com exploit (which was for iPhones 2G on 1.1 firmware): exploit the libtiff vulnerability, install Installer (the Cydia of the time) and patch libtiff afterwards. Apple of course patched the flaw on the very next 1.2 version.

Re:Does the jailbreak patch the exploit? (5, Interesting)

TheRaven64 (641858) | more than 4 years ago | (#33109718)

You've got to love the iPhone spin on this. On any other platform, this would be termed a remote root hole - jailbreaking doesn't just require running arbitrary code, it requires becoming a privileged user who can install arbitrary software as well. On the iPhone, it's a browser-based jailbreak. With a vulnerability like this, you could easily write a worm that would infect a large proportion of iPhone users (just have their phones email / IM the URL of the exploit + payload to everyone in the address book), but somehow the publicity talks about how great it is that you can use it to regain control over the device that you own, rather than about how anyone else can do the same.

Re:Does the jailbreak patch the exploit? (1)

E IS mC(Square) (721736) | more than 4 years ago | (#33110202)

The reality is different in apple world. Those silhouetted zombies with white earbuds are real there.

Re:Does the jailbreak patch the exploit? (4, Insightful)

ColdWetDog (752185) | more than 4 years ago | (#33111226)

You've got to love the iPhone spin on this...

Your Reality Distortion Field is getting a bit weak. Time to head out to your local Apple store and buy something new and shiny to refresh the Field.

Then you will feel better.

Security issue? (5, Insightful)

miffo.swe (547642) | more than 4 years ago | (#33109040)

Isnt this a very large gaping security issue? I would assume its much worse than the Android one where you had to trick the user into installing a kernel module manually.

Re:Security issue? (1)

Netshroud (1856624) | more than 4 years ago | (#33109072)

I'm sure Goatse Security is on to it.

Re:Security issue? (3, Funny)

elrous0 (869638) | more than 4 years ago | (#33109220)

No way. Apple would never use a security firm that was so wide open.

Re:Security issue? (5, Informative)

Jeffrey Baker (6191) | more than 4 years ago | (#33109094)

Yes, but there has never been a time where Mobile Safari was free of remotely exploitable flaws. If you look at the history of the iPhone OS release notes, you will always find gaping holes that were closed in Safari, and many of them were uncovered by third parties. For example see the release notes of iOS 4.0 [apple.com] which contain nuggets like "Impact: Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution" due to CVE-2009-2195 in WebKit.

Re:Security issue? (1)

rsmith-mac (639075) | more than 4 years ago | (#33109156)

CVE-2009-2195 is in fact what allowed the previous Spirit jailbreak.

Re:Security issue? (1)

Jeffrey Baker (6191) | more than 4 years ago | (#33109246)

In which case the current story is non-news (as usual around here).

IS news (1)

tivoKlr (659818) | more than 4 years ago | (#33109786)

This IS news for those of us that were stuck on ios4 on a 3gs which had not previously been jailbroken. A carrier unlock is soon to follow, and given the fact I'm flying to Amsterdam this fall and want to use a prepaid sim while I'm there, this is BIG NEWS for me.

Re:IS news (2, Insightful)

Hal_Porter (817932) | more than 4 years ago | (#33109932)

Ah Apple. You can have a secure browser with outrageous roaming charges or an insecure browser which anyone can run arbitrary root code and no roaming charges.

Re:Security issue? (5, Insightful)

Timmmm (636430) | more than 4 years ago | (#33109158)

Indeed. "Custom versions of Android can be easily created" gets reported as "Android vulnerable to rootkits!", but "Huge security flaw in mobile safari" gets reported as "Unlock your iPhone 4!"

Re:Security issue? (5, Insightful)

whisper_jeff (680366) | more than 4 years ago | (#33109374)

I'm sorry, but are you trying to imply that there's a negative bias against Android and a positive bias towards the iPhone on Slashdot lately? Really? Maybe you haven't been reading the site for the past year or so but, things have changed, quite a bit...

Re:Security issue? (1)

numbski (515011) | more than 4 years ago | (#33109392)

Yes, because the only way to have the ability to write to the root filesystem of your own desires is to find a vulnerability and exploit it first.

If you were able to do it on your own without their "permission" (which you'll never get), then you wouldn't have hackers (the good guys here) looking as hard. In fact, at the end of the day this is a win/win for apple. The only downside is that by smacking the unlockers down, situations like the 3.1.2 to 3.1.3 upgrade arise. A vulnerability has been found, but not publicly disclosed because they need to "sit on it" until the new hardware comes out so Apple won't fix it and can be utilized later.

From a security standpoint, this whole situation really is just that braindead. Pair this with the advent of iPhones "phoning home" to ask permission for whether or not you can load a specific firmware on your own device - I think the reporting here is the least of our concerns.

Re:Security issue? (1)

CharlyFoxtrot (1607527) | more than 4 years ago | (#33109622)

All OS's have security flaws. How else do Android users "root" [androidandme.com] their phones ?

Rooting is a local sploit (1)

Nicolas MONNET (4727) | more than 4 years ago | (#33109926)

jailbreakme.com is a remote exploit, and that's much, much, MUCH nastier.

Re:Rooting is a local sploit (2, Insightful)

CharlyFoxtrot (1607527) | more than 4 years ago | (#33110184)

Good thing Android has never had a remote exploit huh ? (Oops [readwriteweb.com] .)
At least Apple as very judicious about pushing out updates (and Apple users generally update very frequently) while some manufacturers send out handsets with old Android versions [wired.com] and don't care that much about providing their users with the latest and greatest.

Re:Security issue? (1)

dave024 (1204956) | more than 4 years ago | (#33109268)

It must be a security issue that Safari is able to install an app. Can't imagine what else it can do. Glad to have the jailbreak though. I will be using the donate button.

Re:Security issue? (4, Informative)

ArcCoyote (634356) | more than 4 years ago | (#33109498)

Yes it is. Just staring at some hexdumps, it's not a hole in the browser, it is a hole in PDF Type1C font loading. Escalates to kernel space via an IOSurface allocation bug. A malicious PDF (think iBooks...) could do far nastier things than jailbreak for you.

CAPTCHA: "clothing" ... Wolf in sheep's, that is.

iphone gets out, rest of US still held hostage? (-1, Offtopic)

Anonymous Coward | more than 4 years ago | (#33109044)

doesn't seem fair, then what is right, a fair day's pay, adequate civil ceremony etc...?

meanwhile (at least we have some time left); the corepirate nazi illuminati continues to hunt that patch of red on almost everyones' neck. if they cannot find yours (greed, fear ego etc...) then you can go starve. that's their (slippery/slimy) 'platform' now. see also: http://en.wikipedia.org/wiki/Antisocial_personality_disorder

never a better time to consult with/trust in our creators. the lights are coming up rapidly all over now. see you there?

greed, fear & ego (in any order) are unprecedented evile's primary weapons. those, along with deception & coercion, helps most of us remain (unwittingly?) dependent on its' life0cidal hired goons' agenda. most of our dwindling resources are being squandered on the 'wars', & continuation of the billionerrors stock markup FraUD/pyramid schemes. nobody ever mentions the real long term costs of those debacles in both life & any notion of prosperity for us, or our children. not to mention the abuse of the consciences of those of us who still have one, & the terminal damage to our atmosphere (see also: manufactured 'weather', hot etc...). see you on the other side of it? the lights are coming up all over now. the fairytail is winding down now. let your conscience be your guide. you can be more helpful than you might have imagined. we now have some choices. meanwhile; don't forget to get a little more oxygen on your brain, & look up in the sky from time to time, starting early in the day. there's lots going on up there.

"The current rate of extinction is around 10 to 100 times the usual background level, and has been elevated above the background level since the Pleistocene. The current extinction rate is more rapid than in any other extinction event in earth history, and 50% of species could be extinct by the end of this century. While the role of humans is unclear in the longer-term extinction pattern, it is clear that factors such as deforestation, habitat destruction, hunting, the introduction of non-native species, pollution and climate change have reduced biodiversity profoundly.' (wiki)

"I think the bottom line is, what kind of a world do you want to leave for your children," Andrew Smith, a professor in the Arizona State University School of Life Sciences, said in a telephone interview. "How impoverished we would be if we lost 25 percent of the world's mammals," said Smith, one of more than 100 co-authors of the report. "Within our lifetime hundreds of species could be lost as a result of our own actions, a frightening sign of what is happening to the ecosystems where they live," added Julia Marton-Lefevre, IUCN director general. "We must now set clear targets for the future to reverse this trend to ensure that our enduring legacy is not to wipe out many of our closest relatives."--

"The wealth of the universe is for me. Every thing is explicable and practical for me .... I am defeated all the time; yet to victory I am born." --emerson

no need to confuse 'religion' with being a spiritual being. our soul purpose here is to care for one another. failing that, we're simply passing through (excess baggage) being distracted/consumed by the guaranteed to fail illusionary trappings of man'kind'. & recently (about 10,000 years ago) it was determined that hoarding & excess by a few, resulted in negative consequences for all.

consult with/trust in your creators. providing more than enough of everything for everyone (without any distracting/spiritdead personal gain motives), whilst badtolling unprecedented evile, using an unlimited supply of newclear power, since/until forever. see you there?

"If my people, which are called by my name, shall humble themselves, and pray, and seek my face, and turn from their wicked ways; then will I hear from heaven, and will forgive their sin, and will heal their land." )one does not need to agree whois in charge to grasp the notion that there may be some assistance available to us(

boeing, boeing, gone.

So in other words (5, Insightful)

bm_luethke (253362) | more than 4 years ago | (#33109066)

You have a remote rootkit running from simply visiting a website?

Wasn't it just yesterday or the day before we called rooting your android (which has to be tethered), erasing your old operating system, and installing a new "custom" one with a rootkit installed on it which allows remote activiation of root an attack vector (note that even a rooted Android device can't get outside the Dalvik VM)?

I'm certain, absolutely certain that there will be no abuses of this. There will not be any nefarious person have a "must have" app that is so good that the app store refused and all you have to do are these easy steps right here on this web page! No, never happen - users would *never* be stupid enough to run things from a website - this is a great feature!

Re:So in other words (4, Insightful)

jamesh (87723) | more than 4 years ago | (#33109306)

You have a remote rootkit running from simply visiting a website?

That was my first thought too. Apple have left a hole in iPhoneOS (IOS, no matter how you case it, will always be Cisco in my mind :) wide enough that you can get root on it simply by getting to a website? I haven't RTFA so maybe there is more to it than that but i'm a little worried. I wonder how long until I can upgrade to Android on the iPhone...

Re:So in other words (1)

Hal_Porter (817932) | more than 4 years ago | (#33110002)

This would be cool thing for Google to do actually. Launch a getandroid.com website which downloads some root code which installs android on iPhones. Keep updating it as Apple fix bugs.

Forget about apple and android - it's the past (1)

dbIII (701233) | more than 4 years ago | (#33109660)

Nokia has a phone where you don't need to jailbreak it, you have root access in the default OS and full control to even boot from different media into a different operating system. They are probably not the first and I definitely think it's a trend that will catch on if only because the phone DOESN'T CARE where your mp3 or movie comes from, that hot new app will not be blocked or delayed for arbitrary reasons and you don't have to buy crap shareware just to get something as trivial as a stopwatch app.
Most mobile phone companies don't really care about pushing some platform, they just want to sell phones. If a fully open platform is the cheap and easy way out that gives people the features that sell phones then that is the way they will go.

Re:Forget about apple and android - it's the past (1)

Hal_Porter (817932) | more than 4 years ago | (#33110130)

The problem with that is operator subsidy. Apple get $325-$480 in subsidy per device depending on who you believe. Most smartphones get much less. Operators love closed devices - they have a higher average revenue per user. Most people would much rather have a $99 device which is locked than a $500 device which is not.

Re:So in other words (1)

CharlyFoxtrot (1607527) | more than 4 years ago | (#33109674)

I'm certain, absolutely certain that there will be no abuses of this. There will not be any nefarious person have a "must have" app that is so good that the app store refused and all you have to do are these easy steps right here on this web page! No, never happen - users would *never* be stupid enough to run things from a website - this is a great feature!

Yeah that could happen, it's unlikely though since users get their apps from the App Store. This isn't like Windows where users surf the web in search of apps.
Besides what's new, all OS's have these types of flaws including as you point out Android. Still Apple will probably need to fix this in the next release of iOS.

Re:So in other words (1)

bm_luethke (253362) | more than 4 years ago | (#33111086)

Yea, because people would *never* fall for something like this in their e-mail box: "Hey, I just found this *really* cool app for my iPhone. Apple will not allow it on their app store, they are afraid it would make them look bad for not putting on the phone in the firs place!!!! Just click on and install it!" (then it e-mails everyone in the person's contact list once installed). Nope, never in the history of computing have people fallen for things like that in their e-mail. Won't happen because Apple has an *app store*. Nor has any worm propagated around the internet that way either. No, nothing to worry about having a simple to use web-based root-kit that anyone can embed - the App Store will apply its magic shield to protect us.

The difference here is the number of people who consider this a *good thing* that is occurring. I've said many a time that as we begin to realize these are general purpose computers more and more of this will happen and *no* device is immune from it, if you think that you are going to get away from it with either an iPhone, Android, or SuperPhoneOS. For whatever reason many Apple users think they are safe from it because Apple will protect them from it in some mystical magical way (which that belief will make it easier to click on said links, after all *everyone* knows Apple doesn't have these things). Google doesn't talk about how they are immune to this type of thing and do not make a great deal of their sales from it either.

In Apples defense they do not totally buy the spin either, they just take advantage of it.

Re:So in other words (0)

Anonymous Coward | more than 4 years ago | (#33110314)

Lmao I like your opinion on this. But lets not forget the necessity to click on random things they shouldn't click on is often why people move toward apple product.

linux or android (1)

StripedCow (776465) | more than 4 years ago | (#33109100)

This is a great step.

However, only if I can run linux or android on it, I might buy an iPad.
Yes, linux or andoid may not perform that well on this device (cpu and battery-wise), but the mere openness of these OSes is sufficient for me.

Re:linux or android (1)

zlogic (892404) | more than 4 years ago | (#33109356)

Android is Linux. In fact it's probably the best Linux distribution for touchscreen interfaces, only MeeGo is comparable (and very promising) but has a lot of catching up to do. After rooting Android you'll get a terminal with all the standard Linux console utils.
Running Gimp, OpenOffice, Firefox or any other desktop-oriented app on such a device is suicide.

Problem FIXED. Claim of iOS 4 on iPad. (0)

Anonymous Coward | more than 4 years ago | (#33109120)

According to Appadvice, the problems have been fixed and even if you already used it to jailbreak your iDevice, it is easy to undo the damage:

http://appadvice.com/appnn/2010/08/jailbreakmecom-issues-resolved/

They also claim iOS 4 can be installed on an iPad! Has anyone verified this? Are there any downsides? (I'd love to get the "folders" working on mine).

I no longer login because I feel that while attacking a company's products is fair game (specifically Apple), having stories singling out their users as "selfish" and unkind is not "news for nerds stuff that matters". Am I an Apple fanboi? Let's just say I've used NIX for decades (yes I'm old) and I'm not talking OS X.

Note: Userland Jailbreak, Not Bootrom Jailbreak (5, Informative)

rsmith-mac (639075) | more than 4 years ago | (#33109122)

Just as a heads up to anyone thinking of buying and/or jailbreaking an iPhone 4, keep in mind that this is a userland jailbreak (like Spirit) and not a bootrom jailbreak like 24Kpwn. This is significant because this jailbreak only works on iOS versions with the vulnerable component, which means that Apple can and surely will patch it out in 4.1. This is also why Apple is signing their firmware: once they do release 4.1 they'll stop signing 4.0.x and it will be impossible to jailbreak new iPhone 4/3GSes as those devices will ship with 4.1 and it will be impossible to downgrade. Existing owners should be sure to backup their SHSH blobs using Cydia or Tiny Umbrella [blogspot.com] so that you can downgrade or reinstall 4.0.x in the future, otherwise you will be trapped just like new iPhone owners. 3G owners are also encouraged to backup their SHSH blobs, as Apple is soft-signing iOS 4.x on those devices (even though the hardware can't enforce it).

Anyhow, while I'm excited to see an iPhone 4 jailbreak, I'm a bit worried about the fact that it's another userland jailbreak. No one has successfully exploited the Apple bootrom since iBoot-359.3.2 was released last year, which is troubling. It's not possible to replicate the complete jailbreakability of the iPhone/3G without a bootrom exploit, and as iOS can quickly be updated to stamp out new userland exploits there's a distinct risk of the hackers running out of practical ways to jailbreak the platform through such limited means. Unless someone does find a new bootrom exploit, the "golden age" of jailbreaking has probably already sailed, and in the long run this is a very bad thing. The (practically) unhackable computer marches in on all fronts...

Re:Note: Userland Jailbreak, Not Bootrom Jailbreak (4, Insightful)

bemymonkey (1244086) | more than 4 years ago | (#33109304)

That's troubling on a great deal of levels. Android seems to be going the same way...

Re:Note: Userland Jailbreak, Not Bootrom Jailbreak (5, Informative)

Nerdfest (867930) | more than 4 years ago | (#33109790)

Android remains an open OS, but what some phone manufacturers are doing is very bad (fused ROMS, locked bootloaders). I'm hoping word spreads and people avoid those phones.

Re:Note: Userland Jailbreak, Not Bootrom Jailbreak (2, Insightful)

bemymonkey (1244086) | more than 4 years ago | (#33110100)

Which manufacturers aren't doing it? The only phone that's rootable without finding some sort of vulnerability to exploit is still the Nexus One afaik ...

The fact that Moto is the only manufacturer that's succeeded in locking the bootloader down so far that nobody's been able to crack it doesn't mean that others haven't tried. What we need is a completely user accessible operating system, similar to the PC. Something like OpenMoko or the N900, but good :p

Unfortunately, most consumers prefer to be spoonfed whatever junk their carrier has to offer, and wouldn't dream of rooting or applying a custom ROM.

Android is only open in that anyone can use it for their hardware. However, 99% of the hardware that's meant to run with Android is locked down. A pity, really.

Re:Note: Userland Jailbreak, Not Bootrom Jailbreak (-1, Offtopic)

Anonymous Coward | more than 4 years ago | (#33109332)

This actually exploits the Adobe PDF plugin to accomplish what it needs. It seems Apple's concerns over Adobe are well founded. I don't imagine this will function past the next iOS upgrade however.

Funny thing about it, it’s using a loophole in Adobe’s PDF format. Simply put, the new jailbreak is somewhat courtesy of Adobe, how convenient.

http://appadvice.com/appnn/2010/08/breaking-jailbreakmecom-jailbreaks-idevice/ [appadvice.com]

Re:Note: Userland Jailbreak, Not Bootrom Jailbreak (4, Informative)

rsmith-mac (639075) | more than 4 years ago | (#33109630)

Well yes and no. PDF was created by Adobe, but it's actually an ISO standard (ISO 32000 [slashdot.org] ). Adobe does tend to extend it though...

Anyhow, it's not an Adobe plugin that's doing this. Apple writes their own PDF software, and indeed Mac OS X has had native PDF capabilities its whole life. This is a flaw in Apple's PDF handler - Adobe for once has nothing to do with this.

Re:Note: Userland Jailbreak, Not Bootrom Jailbreak (0, Offtopic)

theshowmecanuck (703852) | more than 4 years ago | (#33109418)

this jailbreak only works on iOS versions with the vulnerable component

It seems strange to me that while the FCC says that people have the right to install whatever software they want on their devices, Apple is still 'fixing' the OS on the devices so that their users cannot install their choice of software without jailbreaking the device, which Apple then fixes so that the user cannot install the software they want GOTO LINE 1

While I particularly hate the overly litigious attitude that permeates the United States (note that I like many other aspects a great deal), isn't this a very good case for a class action lawsuit? That is, Apple keeps blocking the users attempts to install their choice of software and possibly corrupts already installed software based on Apple's priorities, not the users.

Re:Note: Userland Jailbreak, Not Bootrom Jailbreak (0)

Anonymous Coward | more than 4 years ago | (#33109470)

No, FCC said that jailbreaking is legal. They said nothing beyond that. That doesn't mean that Apple must make things easy for you.

Re:Note: Userland Jailbreak, Not Bootrom Jailbreak (1)

dave024 (1204956) | more than 4 years ago | (#33109994)

This vulnerability just came out, and Apple hasn't fixed it yet. I wish they would fix it though. A PDF shouldn't be able to install software. Happy to have the jailbreak though. They shouldn't be sued for fixing this hole.

Re:Note: Userland Jailbreak, Not Bootrom Jailbreak (1)

Sir Lollerskates (1446145) | more than 4 years ago | (#33109460)

That is why you need to save your iOS signatures, so you can restore to 4.0.1 at any time, even when apple stops signing.

Use this tool to do it: http://thefirmwareumbrella.blogspot.com/ [blogspot.com]

Re:Note: Userland Jailbreak, Not Bootrom Jailbreak (0)

Anonymous Coward | more than 4 years ago | (#33110104)

are you serious? "the ship has sailed"...

are you retarded or just trolling?

Re:Note: Userland Jailbreak, Not Bootrom Jailbreak (1)

mrogers (85392) | more than 4 years ago | (#33111658)

The (practically) unhackable computer marches in on all fronts...

It would march a little slower if hackers refused to buy locked-down devices.

Facetime/MMS fixed (5, Informative)

RandyOo (61821) | more than 4 years ago | (#33109126)

The Facetime and MMS issues were due to a permissions problem, which has already been sorted out, per planetbeing's Twitter feed [twitter.com] .

Re:Facetime/MMS fixed (1)

Skuld-Chan (302449) | more than 4 years ago | (#33110408)

I think its wonderful how you can visit a website to fix a local filesystem permission issue ;).

Serious security hole (5, Interesting)

wvmarle (1070040) | more than 4 years ago | (#33109134)

Users simply visit the URL to begin the process, which modifies the iOS mobile operating system found on the iPhone, iPod touch and iPad.

This sounds like a huge security hole. If simply visiting a web page can modify the OS of the phone, then this can surely be used for more malicious purposes. Maybe the user has to make some more clicks but then how hard is it to social engineer a user into doing that, and the attacker can do anything they like. Such as installing back doors, keyloggers, whatever. This I think is more than just a jailbreak: this is a root exploit in the browser. Scary, to say the least.

The jailbreak itself may not work on other versions of iOS, but as it involves Safari I wouldn't be surprised if the root exploit itself works there as well. Binary patching of the running O/S (which is what I guess they are doing) of course works only against a specific version, minor revisions may break it, so no surprise it doesn't work for the iPad.

This is one I have to say I hope Apple plugs quickly. It just sounds too scary to me.

Re:Serious security hole (1)

CharlyFoxtrot (1607527) | more than 4 years ago | (#33109836)

This is one I have to say I hope Apple plugs quickly. It just sounds too scary to me.

It's old hat. There was a vulnerability back in iPhoneOS 1.1.2 that allowed pretty much the same thing, in fact the domain name dates from that period, and the sky didn't fall down on our heads then either.

Re:Serious security hole (1)

mac84 (971323) | more than 4 years ago | (#33110042)

visiting the site "starts the process". What else is needed to complete the process? Does the user need to take other actions to complete it?

Re:Serious security hole (1)

tivoKlr (659818) | more than 4 years ago | (#33110144)

Visit jailbrakeme.com, slide the "jailbrake" slider. Get coffee, sip coffee, wait. Jailbrake complete. You'll probably still have some coffee left.

Re:Serious security hole (-1, Troll)

Anonymous Coward | more than 4 years ago | (#33110358)

Learn to spell "break" and what the difference in meaning is between it and "brake", you complete fucking retard.

Re:Serious security hole (0)

Anonymous Coward | more than 4 years ago | (#33111060)

fuck you, asshole!

Re:Serious security hole (1)

Dracker (1323355) | more than 4 years ago | (#33110364)

It pops up a slider like the "slide to unlock" when you press the home button. Only this time it says "Slide to jailbreak"

Re:Serious security hole (1)

wvmarle (1070040) | more than 4 years ago | (#33110768)

Now to come back to the actual question:

Does it REQUIRE any action by the user? Or is this just a technicality, and can the actual exploit be run without any further user intervention?

Re:Serious security hole (1)

dave024 (1204956) | more than 4 years ago | (#33110916)

This website requires user action. The vulnerability itself is done simply by opening up a PDF. So all a web site has to do is trick a user to click on a link.

Oh, you will pay! (1, Offtopic)

elrous0 (869638) | more than 4 years ago | (#33109182)

Steve is already readying his police cronies [cnet.com] to kick down some doors to stop this. And don't think some hippie court ruling is going to stand in Steve's way! He'll say this is malicious hacking.

Meanwhile... (1, Insightful)

CuriousGeorge113 (47122) | more than 4 years ago | (#33109314)

Meanwhile, everyone else using Palm, Blackberry, Windows Mobile, Android or Symbian devices, can keep being awesome. We don't have to jailbreak our phones to use them how we want to.

Re:Meanwhile... (1)

rickb928 (945187) | more than 4 years ago | (#33110268)

Actually, I had to root my G1 to change the software. Now I'm running a 2x radio, DangerSPL, and CM6RC2.

But it had to be rooted, which is 7331 slang for jailbreaking. As do most all Android phones, except DEV phones, which are, wait, they had to be rooted too.

Now slick is to root the HD2 and run Android on it. Ultimate bugfix.

MMS/Facetime issues have long since been resolved (1, Insightful)

Anonymous Coward | more than 4 years ago | (#33109426)

In typical fashion Slashdot is WAY late posting this story and the MMS/Facetime issues have long since been fixed. Anyone doing a new jailbreak will never see the issue as the jailbreakme.com site has been updated to correct it and anyone who already jailbroke and has the issue can simply go into Cydia and accept the automatic update and they will be fixed also. Again, THERE ARE NO LONGER ANY MMS/FACETIME ISSUES and there haven't been for almost 12 hours now. In fact they were fixed within an hour of being confirmed by Comex. It would be nice if Slashdot made the slightest attempt to make sure their stories are accurate, especially one of this magnitude.

Re:MMS/Facetime issues have long since been resolv (1)

dave024 (1204956) | more than 4 years ago | (#33109602)

Calm down. It came out yesterday, as far as I know. And some users have "reported that the modification results in broken MMS and FaceTime functionality" in the forums that I have seen. They are simply reporting what has happened. If it has been fixed that is great.

Broken IPhone (1)

helix2301 (1105613) | more than 4 years ago | (#33109554)

I think its defiantly nice that you have the freedom to jailbreak the phone if you want. Now websites like this are legitimate and people with jailbroken Iphones don't have to hide them.

WTF? When was it ever ILLEGAL? (0)

Anonymous Coward | more than 4 years ago | (#33109582)

I've been jailbreaking my iPhone since the beginning. I own the iPhone. I can do whatever I want to it. This is probably why the government has just officially stated that "it's legal" to jailbreak it. I'm just not sure about this browser-based jailbreak. I'm kinda scared that visiting a website can modify my OS on my phone. I actually hope Apple will fix this hole. I want the hackers out there to come up with an exploit similar to how Spirit jailbreaks the 3GS and prior.

Well, it's a good thing the government made all this legal....cause they definitely wouldn't have stopped me from jailbreaking MY OWN phone. Shit, I'll do what I want with any of my possessions. And this will always be the case. NO ONE will tell me what I can or can't do with my possessions.

Re:WTF? When was it ever ILLEGAL? (0)

Anonymous Coward | more than 4 years ago | (#33109980)

If you've been jb'ing since the beginning, you must remember the first Safari based jailbreak, I do, it was on the original iPhone, and I remember jailbreaking a display iPhone OTA while in the Cherry Creek Apple Store (God I hate that place).

It was trivial to do (as is this) and was entertaining to boot, as this was before the app store, so the jb added a ton of extra functionality to that one display phone...

Re:WTF? When was it ever ILLEGAL? (-1, Flamebait)

rickb928 (945187) | more than 4 years ago | (#33110318)

"NO ONE will tell me what I can or can't do with my possessions"

Actually, you're right.

You can in fact drive your M3 down the Pima Freeway at 120+ on a Friday night. Of course, the police may put out the spike strips and tow your M3 to the impound lot.

You can, in fact, shoot someone with your gun. Getting caught will prove that the government can do whatever they want with you if you actually break the law.

But we're really focused on stuff, like iPhones and microwave ovens, right?

Hey, they didn't take down ALL the cameras on the 101, so be careful out there. Doing what you want is haszerdous to your freedom, if taken too far.

Re:WTF? When was it ever ILLEGAL? (1)

nurb432 (527695) | more than 4 years ago | (#33111328)

Sure you can do what you want with your device legally. but you can also lose your warranty and have your contract canceled, with an early termination fee. Both parties have their rights. its NOT all about you.

Tho there is some fuzzyness on when you actually own the device, since its being subsidized via your service..

And just another note... (2, Insightful)

denmarkw00t (892627) | more than 4 years ago | (#33109768)

If you're doing this and getting the purple background of death (just hangs and doesn't install) try this:

Method 1
-Click Home
-Double-click Home to bring up running apps
-Click and hold on Safari
-Close Safari, try again

Method 2
-Go to Settings->Safari
-Clear cache, history, cookies (some reported clearing History IN Safari to work)
-Try again

Method 3 (only thing that worked for me)
-Go to jailbreakme.modmyi.com instead of jailbreakme.com (just a mirror)

3GS 4.0.1

Re:And just another note... (1)

Coward Anonymous (110649) | more than 4 years ago | (#33111050)

worked for me, thanks!

Re:And just another note... (1)

denmarkw00t (892627) | more than 4 years ago | (#33111446)

Just curious, which method and phone/os? I tried 1 and 2 over and over along with rebooting, restoring to backup, full restore etc but then #3 worked out of the blue.

Sometimes I believe Apple puts these back doors in (4, Interesting)

line-bundle (235965) | more than 4 years ago | (#33109794)

To have the "cutting edge" people test out new features.

Re:Sometimes I believe Apple puts these back doors (0)

Anonymous Coward | more than 4 years ago | (#33111146)

yea... sure... lol

Re:Sometimes I believe Apple puts these back doors (0)

Anonymous Coward | more than 4 years ago | (#33111284)

This particular would have been stupid to put in on purpose though, considering it's a giant security hole just waiting for someone to exploit.

Security risk? (1)

Stooshie (993666) | more than 4 years ago | (#33109882)

If this is just a URL couldn't a user be pointed to this unwittingly and there phone would have it's warranty nullified without the user having done anything?

Re:Security risk? (1)

irving47 (73147) | more than 4 years ago | (#33110432)

Seems that way to me, too.
But maybe it's a good thing in that Apple won't have a leg to stand on.
I don't care how strict the EULA is. No court is going to let them void thousands of warranties when all the action that was required was visiting a website or being redirected to one against the users will or knowledge.

Re:Security risk? (1)

davidbrit2 (775091) | more than 4 years ago | (#33110792)

Probably not. You have to manually initiate the process once the page loads.

Re:Security risk? (1)

BarryJacobsen (526926) | more than 4 years ago | (#33111648)

Probably not. You have to manually initiate the process once the page loads.

Just because this website has the user initiate the exploit via a manual process, doesn't mean a nefarious website couldn't do it automatically.

It does work! (1)

ffohwx (1434637) | more than 4 years ago | (#33110690)

I can't figure out why people keep saying that is does not work on iOS 3.2.1 for iPad. I did it last night, and it worked perfectly. On top of that, it is also on the list of official supported devices and software versions.

Jailbreak DOES work on iPad iOS 3.2.1 (1)

Schlopper (413780) | more than 4 years ago | (#33110938)

I beg to differ, but my iOS 3.2.1 iPad was jailbroken within 10 minutes of the jailbreak release.

Not a first.... ? (1)

Mr Stubby (1122233) | more than 4 years ago | (#33110944)

The blurb says this is a first, but I seem to recall maybe 3 years ago so on iphone OS 1.1.1ish was also jailbroken through the browser.. I don't recall all of the details but the URL was the same and i remember at the time watching a clip of Woz jailbreaking Kathy's iphone in the back of a limo with no PC software or tethering.
Load More Comments
Slashdot Login

Need an Account?

Forgot your password?