Risk
9/9/2010
12:02 AM
George V. Hulme
George V. Hulme
Commentary
50%
50%

iPhone iOS Devices Jailbroken

Hackers are claiming to have uncovered a flaw within iPhone and iPod Touch hardware that will make it easy for users to jailbreak their devices. And, if these reports prove accurate, it'll not be a trivial workaround for Apple to fix.

Hackers are claiming to have uncovered a flaw within iPhone and iPod Touch hardware that will make it easy for users to jailbreak their devices. And, if these reports prove accurate, it'll not be a trivial workaround for Apple to fix.Hacker Pod2g from the group Chronix Dev Team claims to have found a boot ROM vulnerability that can be used to create jailbreak exploits for most iPhones and iPod Touches. Such an exploit can't be fixed with a firmware update - rather they require a replacement of the hardware device. That's because once the boot ROM is programmed and set and the phone assembled in the factory, this segment of hardware can't be updated.

That means if you bought your device before today, or before Apple patches the hole in manufacturing, you may be able to jailbreak your device without Apple being able to do much - if anything - about it.

Any day now expect the iPhone Dev Team and others to publish software that will make it simple for anyone to jailbreak their iPhone or Touch.

It seems serendipitous that the jailbreakable vulnerability was announced on the same day Apple made its iOS 4.1 upgrade available. As Paul McDougall points out, the upgrade offers a number of enhancements including a social gaming platform, TV show rentals, iTunes Ping, advanced photographic capabilities, and fixes a number of bugs and other performance issues.

However, users may want to think twice before jailbreaking their devices. In February, Apple filed for a patent that covers the ability to spot and disable various unauthorized uses of an iPhone, Touch, or iPad - jailbreaking included.

So by jailbreaking the device, you may not only be voiding the warranty - but you may one day end up with a bricked phone or MP3 player.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-9710
Published: 2015-05-27
The Btrfs implementation in the Linux kernel before 3.19 does not ensure that the visible xattr state is consistent with a requested replacement, which allows local users to bypass intended ACL settings and gain privileges via standard filesystem operations (1) during an xattr-replacement time windo...

CVE-2014-9715
Published: 2015-05-27
include/net/netfilter/nf_conntrack_extend.h in the netfilter subsystem in the Linux kernel before 3.14.5 uses an insufficiently large data type for certain extension data, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) via outbound network traffic that trig...

CVE-2015-2666
Published: 2015-05-27
Stack-based buffer overflow in the get_matching_model_microcode function in arch/x86/kernel/cpu/microcode/intel_early.c in the Linux kernel before 4.0 allows context-dependent attackers to gain privileges by constructing a crafted microcode header and leveraging root privileges for write access to t...

CVE-2015-2830
Published: 2015-05-27
arch/x86/kernel/entry_64.S in the Linux kernel before 3.19.2 does not prevent the TS_COMPAT flag from reaching a user-mode task, which might allow local users to bypass the seccomp or audit protection mechanism via a crafted application that uses the (1) fork or (2) close system call, as demonstrate...

CVE-2015-2922
Published: 2015-05-27
The ndisc_router_discovery function in net/ipv6/ndisc.c in the Neighbor Discovery (ND) protocol implementation in the IPv6 stack in the Linux kernel before 3.19.6 allows remote attackers to reconfigure a hop-limit setting via a small hop_limit value in a Router Advertisement (RA) message.

Dark Reading Radio
Archived Dark Reading Radio
After a serious cybersecurity incident, everyone will be looking to you for answers -- but youíll never have complete information and youíll never have enough time. So in those heated moments, when a business is on the brink of collapse, how will you and the rest of the board room executives respond?