Apple JailBreakMe Vulnerability
Good information from Mikko Hyppönen.
Q: What is this all about?
A: It's about a site called jailbreakme.com that enables you to Jailbreak your iPhones and iPads just by visiting the site.
Q: So what's the problem?
A: The problem is that the site uses a zero-day vulnerability to execute code on the device.
Q: How does the vulnerability work?
A: Actually, it's two vulnerabilities. First one uses a corrupted font embedded in a PDF file to execute code and the second one uses a vulnerability in the kernel to escalate the code execution to unsandboxed root.
Q: How difficult was it to create this exploit?
A: Very difficult.
Q: How difficult would it be for someone else to modify the exploit now that it's out?
A: Quite easy.
Here's the JailBreakMe blog.
EDITED TO ADD (8/15): More info.
Posted on August 10, 2010 at 12:12 PM • 48 Comments