or Connect
AppleInsider › Forums › Mobile › iPhone › Apple says iOS update coming to fix new PDF exploit
New Posts  All Forums:Forum Nav:

Apple says iOS update coming to fix new PDF exploit

post #1 of 31
Thread Starter 
A new browser-based hack that allows users to wirelessly jailbreak their iPhone, iPod touch or iPad has led to fresh concerns over the security of the iOS platform, while Apple has promised that a fix will arrive soon.

The latest version of JailbreakMe.com was released Wednesday by the iOS hacking group Dev-Team. According to the site, users can "just browse to http://www.jailbreakme.com on [their] device and install it from there." The hack resembles an earlier version of JailBreakMe that arrived last year.

But, security researchers worry that the vulnerability could allow hackers to install malware when a user clicks on a malicious PDF.

"The Jailbreakme.com exploit downloads a payload to jailbreak the phone, but it could be changed to deliver a malicious payload," security expert Charlie Miller said. He notes that this is the first exploit that can defeat Apple's ASLR (Address Space Layout Randomization)," a technique developed by the Cupertino-based company to obstruct various attacks.

Apple has responded to the concerns via spokeswoman Trudy Millar, who said: "Apple takes security very seriously. We're aware of this reported issue and are developing a fix that will be available to customers in an upcoming software update.

Jailbreaking an iOS device allows the installation of third-party apps outside of the App Store and is often used for carrier unlocks for the iPhone, though the process does void Apples warranty. Last year, the U.S. government declared jailbreaking and unlocking legal, though Apple is not obligated to support modified devices.

Those who are currently running jailbroken devices can fix the flaw by downloading the latest PDF Patcher 2 software released by the Dev-Team on the Cydia store for unsanctioned apps, while those with non-jailbroken devices will have to wait for Apple to release a fix. Last year, it took Apple nine days to release an update that solved the PDF exploit.
post #2 of 31
Hell this jailbreak only took 30 secs on my iPhone 4 running 4.2.8. Running smooth too! I read on Cnet the jailbreakme website announced 1 million downloads had been reached in 24 hours. Pretty neat!

http://reviews.cnet.com/8301-19512_7...?tag=cnetRiver
post #3 of 31
Quote:
Originally Posted by Darkstar2007 View Post

Hell this jailbreak only took 30 secs on my iPhone 4 running 4.2.8. Running smooth too! I read on Cnet the jailbreakme website announced 1 million downloads had been reached in 24 hours. Pretty neat!

http://reviews.cnet.com/8301-19512_7...?tag=cnetRiver

Don't forget to grab the exploit patch from Cydia.
Dick Applebaum on whether the iPad is a personal computer: "BTW, I am posting this from my iPad pc while sitting on the throne... personal enough for you?"
Reply
Dick Applebaum on whether the iPad is a personal computer: "BTW, I am posting this from my iPad pc while sitting on the throne... personal enough for you?"
Reply
post #4 of 31
So apple closed one pdf exploit and left another open?. i thought they would have learned their lesson the first time around with pdf exploits.

but good for me, hopefully ill be able to unlock my ip4
post #5 of 31
Quote:
Originally Posted by Darkstar2007 View Post

Hell this jailbreak only took 30 secs on my iPhone 4 running 4.2.8. Running smooth too! I read on Cnet the jailbreakme website announced 1 million downloads had been reached in 24 hours. Pretty neat!

http://reviews.cnet.com/8301-19512_7...?tag=cnetRiver

Quote:
Originally Posted by solipsism View Post

Don't forget to grab the exploit patch from Cydia.

Tried it last night on my iPad 2 16GB WiFi. Virtually instant jailbreak. Patched with PDF Patcher 2 from Cydia. First thing I did was to put some of my favourite non-Apple-supplied fonts onto the iPad 2 (using the free Bytafont app on Cydia). Fun.
post #6 of 31
Quote:
Originally Posted by solipsism View Post

Don't forget to grab the exploit patch from Cydia.


I forgot about that. Thanks for the reminder! I was overwhelmed by all the extra stuff you can do
post #7 of 31
Everyone note that like the previous jailbreak DRM'ed iBooks is also broken on this jailbreak... Well, can't have everything.
post #8 of 31
Thanks Apple, but your services are no longer needed. The Dev team took care of the jb AND plugged the hole. Movealong. Nothing to see here.

END OF LINE
post #9 of 31
More incompetence from Apple. They desperately needed the over the air incremental updates from iOS5 about 3 years ago. Major security holes should not takes days or weeks to patch, and they certainly should not be patched by the hacking community well before Apple gets around to it.

Oh well, thanks to the Dev-Team for looking out for us while Apple sits on their hands, yet again.
post #10 of 31
Gloat while you can, barely literate peasants.

Keep it up...

Who smiles in the end?
post #11 of 31
Quote:
Originally Posted by airmanchairman View Post

Gloat while you can, barely literate peasants.

Keep it up...

Who smiles in the end?


Does acting like an idiot help you feel like less of a loser? Anyone with half a brain can figure out that this is a MAJOR security flaw and that Apple did not identify it or address it in a timely manner. Heck they still have not released a patch but we hope they will someday soon. It doesn't even take half a brain to figure out this has happened before multiple times. Since you don't seem to get it, I must assume you have very little brain function.

Go ahead and attack others literacy and social status if it makes you feel better about yourself, but I assure you, no one but you is impressed.
post #12 of 31
Quote:
Originally Posted by airmanchairman View Post

Gloat while you can, barely literate peasants.

Keep it up...

Who smiles in the end?

Sweet.

Quote:
Originally Posted by AIaddict View Post

Does acting like an idiot help you feel like less of a loser? Anyone with half a brain can figure out that this is a MAJOR security flaw and that Apple did not identify it or address it in a timely manner. Heck they still have not released a patch but we hope they will someday soon. It doesn't even take half a brain to figure out this has happened before multiple times. Since you don't seem to get it, I must assume you have very little brain function.

Go ahead and attack others literacy and social status if it makes you feel better about yourself, but I assure you, no one but you is impressed.

The same as above p. (level)

Just because there is an exploit does not mean Apple is lazy or incompetence. Some things are just unknown until it get discovered. That is just our life. Surely if the dev-team work at Apple they would identify it with Apple and not in the opposition to them. I dont think they would (working at Apple).
post #13 of 31
Quote:
Originally Posted by nvidia2008 View Post

Everyone note that like the previous jailbreak DRM'ed iBooks is also broken on this jailbreak... Well, can't have everything.

Since the jailbreak is tethered, if you reboot the device, you can get iBooks back.

In that state, you lose Safari, though.

Quote:
Originally Posted by Mac.World View Post

Thanks Apple, but your services are no longer needed. The Dev team took care of the jb AND plugged the hole. Movealong. Nothing to see here.

END OF LINE

Riddle me this, Mac.World: How do you expect to jailbreak the release version of iOS 5 at all since Apple is patching the hole? You act as though the jailbreakers have actually done something good. Or something at all. They haven't.

Originally posted by Relic

...those little naked weirdos are going to get me investigated.
Reply

Originally posted by Relic

...those little naked weirdos are going to get me investigated.
Reply
post #14 of 31
It's interesting that the source you install once jailbroken, that deals in pirated Apps has a message saying they can't keep up with demand since this exploit was released.

Of course the apologists will probably start chiming in about how jailbreaking is never used for piracy.
Better than my Bose, better than my Skullcandy's, listening to Mozart through my LeBron James limited edition PowerBeats by Dre is almost as good as my Sennheisers.
Reply
Better than my Bose, better than my Skullcandy's, listening to Mozart through my LeBron James limited edition PowerBeats by Dre is almost as good as my Sennheisers.
Reply
post #15 of 31
Quote:
Originally Posted by hill60 View Post

Of course the apologists will probably start chiming in about how jailbreaking is never used for piracy.

I've never seen a single person say that. Get over yourself.

What I HAVE seen is people saying that jailbreaking isn't EXCLUSIVELY used for piracy, which is true.

Originally posted by Relic

...those little naked weirdos are going to get me investigated.
Reply

Originally posted by Relic

...those little naked weirdos are going to get me investigated.
Reply
post #16 of 31
Quote:
Originally Posted by hill60 View Post

Of course the apologists will probably start chiming in about how jailbreaking is never used for piracy.

Where has that ever been posted?
Dick Applebaum on whether the iPad is a personal computer: "BTW, I am posting this from my iPad pc while sitting on the throne... personal enough for you?"
Reply
Dick Applebaum on whether the iPad is a personal computer: "BTW, I am posting this from my iPad pc while sitting on the throne... personal enough for you?"
Reply
post #17 of 31
Quote:
Originally Posted by hill60 View Post

Of course the apologists will probably start chiming in about how jailbreaking is never used for piracy.

Where has that ever been posted?
Dick Applebaum on whether the iPad is a personal computer: "BTW, I am posting this from my iPad pc while sitting on the throne... personal enough for you?"
Reply
Dick Applebaum on whether the iPad is a personal computer: "BTW, I am posting this from my iPad pc while sitting on the throne... personal enough for you?"
Reply
post #18 of 31
deleted
post #19 of 31
Quote:
Originally Posted by Tallest Skil View Post

Since the jailbreak is tethered, if you reboot the device, you can get iBooks back.

?? It's untethered. Always has been.
post #20 of 31
Quote:
Originally Posted by Eye Forget View Post

?? It's untethered. Always has been.

Oh. Whoops. I'm talking about iOS 5 beta 2's jailbreak which behaves the same way as whatever this one does, apparently.

Originally posted by Relic

...those little naked weirdos are going to get me investigated.
Reply

Originally posted by Relic

...those little naked weirdos are going to get me investigated.
Reply
post #21 of 31
Quote:
Originally Posted by MacRulez View Post

Straw man.

Meanwhile:

JailbreakMe.com 3.0 Surpasses 1 Million Jailbreaks in Under 24 Hours
http://www.iphoneincanada.ca/jailbre...nder-24-hours/

Pirates, overloading the pirated App servers.

Quote:
Tario70
Posted Today, 04:53 AM
If you ever get an error, like API unavailable, be sure to check a*******r.org to ensure it is up.

I also received the API error & guess what, a********r.org is DOWN! Which means we all cannot download anything.

I know it's been said a few times in this thread, but BE PATIENT. The servers are being hammered right now & the amount of traffic is killing the server.

On a side note, perhaps a lot of people would benefit from using A******r & saving the IPA's that you download so that when a new jailbreak comes out you don't need to bombard a*******r/i******us for your apps. That's how I do it & that means I'm only hitting a********r/i*******us when an app has an update. It definitely could reduce the strain on the servers in the future.

~Tario70

The pirates have been unleashed, well done Dev Team you are aiding and abetting thieves, in spite of the bulls**t disclaimer.

Quote:
tdb94
\t
Posted Today, 08:18 AM
I think API error is due to traffic on i*******us, as far as invalid ipa, that just means that the file u downloaded was not cracked properly, try a different source and cracker. Not installing with a good .ipa could be related to just tapping on that file in dowloads after it's completed the download, unless u have the setting clicked to automatically install from the settings tab. If u click install automatically it will go on it's own after download, u also need to check off the sync with iTunes tab in settings as well if u want it to sync. Hope this helps.

F**K THE STRAWMAN ARGUMENT, have a dose of reality.
Better than my Bose, better than my Skullcandy's, listening to Mozart through my LeBron James limited edition PowerBeats by Dre is almost as good as my Sennheisers.
Reply
Better than my Bose, better than my Skullcandy's, listening to Mozart through my LeBron James limited edition PowerBeats by Dre is almost as good as my Sennheisers.
Reply
post #22 of 31
Quote:
Originally Posted by hill60 View Post

Pirates, overloading the pirated App servers.



The pirates have been unleashed, well done Dev Team you are aiding and abetting thieves, in spite of the bulls**t disclaimer.



F**K THE STRAWMAN ARGUMENT, have a dose of reality.


What makes you think the servers are down due to pirates?
So now if I want to catch the super bowl and so does 1 million people with me and meanwhile the server cannot handle the load,does it entail that i am a hacker.

Get a dose of fresh air..and a dose of computer literacy first.
post #23 of 31
Quote:
Originally Posted by bongo View Post

What makes you think the servers are down due to pirates?
So now if I want to catch the super bowl and so does 1 million people with me and meanwhile the server cannot handle the load,does it entail that i am a hacker.

Get a dose of fresh air..and a dose of computer literacy first.

Well, due to the people who run the cracked App servers stating that since this exploit was released their servers have been overwhelmed with an influx of new people who are looking for pirated Apps.

The Dev team are nothing more than aiders and abettors of thieves and pirates no matter what moral high ground they want to adopt.

They should be ashamed of themselves for taking income from App store developers.
Better than my Bose, better than my Skullcandy's, listening to Mozart through my LeBron James limited edition PowerBeats by Dre is almost as good as my Sennheisers.
Reply
Better than my Bose, better than my Skullcandy's, listening to Mozart through my LeBron James limited edition PowerBeats by Dre is almost as good as my Sennheisers.
Reply
post #24 of 31
And Budweiser should be ashamed of themselves for enabling drunk drivers.
melior diabolus quem scies
Reply
melior diabolus quem scies
Reply
post #25 of 31
Quote:
Originally Posted by Gatorguy View Post

And Budweiser should be ashamed of themselves for enabling drunk drivers.

Maybe if they handed out six-packs at toll booths they would be.
Better than my Bose, better than my Skullcandy's, listening to Mozart through my LeBron James limited edition PowerBeats by Dre is almost as good as my Sennheisers.
Reply
Better than my Bose, better than my Skullcandy's, listening to Mozart through my LeBron James limited edition PowerBeats by Dre is almost as good as my Sennheisers.
Reply
post #26 of 31
deleted
post #27 of 31
Quote:
Originally Posted by Splash-reverse View Post

Just because there is an exploit does not mean Apple is lazy or incompetence. Some things are just unknown until it get discovered. That is just our life. Surely if the dev-team work at Apple they would identify it with Apple and not in the opposition to them. I dont think they would (working at Apple).

This went public days ago. There is even a public patch Apple can learn from or even copy. So what has Apple done to protect the 100+ million people who do not jailbreak? They have suggested a fix will be coming sometime in the future. I am sorry, but for an exploit of this nature, that can be executed so easily, sometime in the future is not good enough.

The dev-team patch is an app that is a few k and installs in a second, and it has been available from the time the bug went public. The Apple fix will be a full iOS build of several hundred mb and it will be available in a week or two if we are lucky. Oh and it will only be available for iPhone 3GS and later. Those with older devices will just have to live with this major security hole because Appl;e no longer gives a sh!t about you.

I am sorry, but Apple is clearly being lazy and incompetent in their handling of these major security holes.
post #28 of 31
Quote:
Originally Posted by Eye Forget View Post

?? It's untethered. Always has been.

Quote:
Originally Posted by Tallest Skil View Post

Oh. Whoops. I'm talking about iOS 5 beta 2's jailbreak which behaves the same way as whatever this one does, apparently.

Ya... This 4.3.3 jailbreak is user land so it's not bootrom etc... So it is untethered. Don't really need iBooks at this stage. Will use PDFs instead.
post #29 of 31
Quote:
Originally Posted by nvidia2008 View Post

Ya... This 4.3.3 jailbreak is user land so it's not bootrom etc... So it is untethered. Don't really need iBooks at this stage. Will use PDFs instead.

Which... you read in iBooks, which is broken. Oops!

Originally posted by Relic

...those little naked weirdos are going to get me investigated.
Reply

Originally posted by Relic

...those little naked weirdos are going to get me investigated.
Reply
post #30 of 31
Quote:
Originally Posted by Tallest Skil View Post

Which... you read in iBooks, which is broken. Oops!

Nah, only DRM'ed iBooks is broken. Non-DRM'ed iBooks and PDFs are fine. I guess I'm being "punished" for jailbreaking by not being able to read the very books I paid money for and obtain legitimately.

DRM for books is as silly as DRM for music. Most books are available as pirated PDFs, since it seems easy for pirates to strip the DRM from books and so on bought online as "secure DRM" PDFs. But the fear of piracy is always there... I don't know how it works on Kindle and what not. But on iBooks DRM seems... unnecessary.
post #31 of 31
FYI, this is what IT guys are reading on the PDF exploit dangers on iOS:

http://www.networkworld.com/news/201..._pm_2011-07-07

"Malformed files that exploit the vulnerability have been publicly posted on the Internet. . .
And those PDFs could be used by miscreants to hack iOS devices simply by luring users to malicious sites, said Andrew Storms, director of security operations at nCircle Security.

iPhone and iPad users steered to a malicious PDF -- via a link embedded in an email, for instance -- would not receive any warning or be required to take additional action.

"This is a click-and-pwn kind of situation since the user is not prompted to confirm opening the file," said Storms, referring to the term used by researchers to describe hijacking a device.


IMO, this one is a pretty gaping hole. All the discussion about jailbreaking misses the important point. The article isn't about the pro's and con's of it. Every iOS device is currently susceptible to being hijacked. So watch those PDF's guys. Hopefully Network World's guess of a fix within another day or two is on target.
melior diabolus quem scies
Reply
melior diabolus quem scies
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: iPhone
AppleInsider › Forums › Mobile › iPhone › Apple says iOS update coming to fix new PDF exploit