Apple's iPhone PDF Exploit. Scared? (Exploited already by Jailbreak)

Discussion in 'iPhone' started by Mike225, Aug 3, 2010.

  1. Mike225 macrumors 6502a

    Mike225

    Joined:
    Jul 15, 2010
    Location:
    SF BAY
    #1
  2. chakraj macrumors 65816

    chakraj

    Joined:
    Feb 6, 2008
    Location:
    So Cal
  3. Mike225 thread starter macrumors 6502a

    Mike225

    Joined:
    Jul 15, 2010
    Location:
    SF BAY
    #3
    Is the SSH vulnerability patched yet?
     
  4. Ryan1524 macrumors 68000

    Ryan1524

    Joined:
    Apr 9, 2003
    Location:
    Canada GTA
    #4
    So when Apple patches this....who's going to update? and will it break the jailbreak? :p
     
  5. TruckdriverSean macrumors 6502a

    Joined:
    Feb 28, 2009
    Location:
    Texas, US
    #5
    Wirelessly posted (Mozilla/5.0 (iPhone; U; CPU iPhone OS 4_0_1 like Mac OS X; en-us) AppleWebKit/532.9 (KHTML, like Gecko) Version/4.0.5 Mobile/8A306 Safari/6531.22.7)

    As Apple's updates almost always break the jailbreak, I'm on the fence about this. I don't want to leave a big gaping security flaw on my iP4, but I don't want to NOT be able to jailbreak later, should I decide to.
     
  6. JediZenMaster Suspended

    JediZenMaster

    Joined:
    Mar 28, 2010
    Location:
    Seattle
    #6
    I'm not really scared because only an idiot would open a PDF or any file for that matter that was foreign to them. Some people need to exercise common sense.
     
  7. Mike225 thread starter macrumors 6502a

    Mike225

    Joined:
    Jul 15, 2010
    Location:
    SF BAY
    #7
    Why would someone normally be scared of a PDF?
     
  8. alent1234 macrumors 603

    Joined:
    Jun 19, 2009
    #8

    you do realize that JB is nothing more than taking advantage of Apple's security bugs. it's nothing magical about it. the first suspects are buffer overruns and you bombard the OS with corrupt data until you find a bug.

    most of the security issues in Windows years ago was buffer overruns. you create a variable to hold data with say 10 characters but you don't check that it only will take no more than 10. you throw 11 or more at it and it causes a buffer overrun that gives you control over some function.
     
  9. JediZenMaster Suspended

    JediZenMaster

    Joined:
    Mar 28, 2010
    Location:
    Seattle
    #9
    Because if it comes from a source that your not familiar with then why open it? Even if it's a PDF if it comes from a strange place don't open it.
     
  10. Mike225 thread starter macrumors 6502a

    Mike225

    Joined:
    Jul 15, 2010
    Location:
    SF BAY
    #10
    What if a MacRumors user uploaded it and said it was a document or advertisement he was working on? next you will tell me you wouldn't open a JPEG if Preview had a vulnerability and it was from an unknown source, Im sure.
     
  11. Cynikal.Mindset macrumors 6502a

    Joined:
    Jul 6, 2010
    Location:
    Guelph ON, Canada
    #11
    The PDF warning fix does not patch or break the ability to jailbreak, its a pop up warning that some PDF file is trying to load on your phone. Works quite well actually, just tested it out on the jailbreakme.com site
     
  12. kas23 macrumors 603

    kas23

    Joined:
    Oct 28, 2007
    #12
    You can upload an shsh blob of your 4.01. This will allow you to revert back to 4.01 if you accidently (or purposely) update your firmware in the future. As long as you have the ability to revert back to 4.01, you will always have the option to jailbreak. And if you please, after jailbreaking, you can close the security hole yourself. It's ironic that the only way to fix a huge security risk right now is to jailbeak by exploiting this same security hole.

    http://www.ihackintosh.com/2010/07/how-to-backup-ios-4-shsh-blobs-for-iphone-4/
     
  13. JediZenMaster Suspended

    JediZenMaster

    Joined:
    Mar 28, 2010
    Location:
    Seattle
    #13
    I Don't open files from unknown places and people i don't know period.
     
  14. admanimal macrumors 68040

    Joined:
    Apr 22, 2005
    #14
    Why would they bother fixing something that is only a problem if you jailbreak?
     
  15. silver8ack macrumors regular

    Joined:
    Jul 22, 2010
    #15

    What if someone hacked yahoo.com and made it the home page.

    Oh you don't go to yahoo.com.

    You are 1337.
     
  16. ZenoVT macrumors regular

    Joined:
    Apr 16, 2009
    #16
    It's not a matter of choosing to open a pdf file or not. You could go to a seemingly harmless site and it redirects you to a pdf file that will wreck your phone. Oops
     
  17. JediZenMaster Suspended

    JediZenMaster

    Joined:
    Mar 28, 2010
    Location:
    Seattle
    #17
    I hope you have enough straws to grasp.
     
  18. Mike225 thread starter macrumors 6502a

    Mike225

    Joined:
    Jul 15, 2010
    Location:
    SF BAY
    #18
    Because you must SSH in (By jailbreaking using the exploit) to patch the PDF exploit. Its a little complicated to a novice I guess.
     
  19. Mike225 thread starter macrumors 6502a

    Mike225

    Joined:
    Jul 15, 2010
    Location:
    SF BAY
    #19
    How old are you? You are the most unintelligent person on the forum Ive seen (And thats pretty amazing, especially on this site)
     
  20. JediZenMaster Suspended

    JediZenMaster

    Joined:
    Mar 28, 2010
    Location:
    Seattle
    #20
    Thanks. Ask me if i care what someone on a message board thinks of me.
     
  21. Mike225 thread starter macrumors 6502a

    Mike225

    Joined:
    Jul 15, 2010
    Location:
    SF BAY
    #21
    Do you care when a whole forum can see your ignorance?
     
  22. JediZenMaster Suspended

    JediZenMaster

    Joined:
    Mar 28, 2010
    Location:
    Seattle
    #22
    Your entitled to your opinion. I don't care what anyone online thinks of me. Now if your attempting to call me out go ahead. But the fact that you have followed me into 2 Different threads shows how unhinged you are.
     
  23. Mike225 thread starter macrumors 6502a

    Mike225

    Joined:
    Jul 15, 2010
    Location:
    SF BAY
    #23
    I started this thread, bright one. ;)
     
  24. JediZenMaster Suspended

    JediZenMaster

    Joined:
    Mar 28, 2010
    Location:
    Seattle
    #24
    Great and i'm using the block feature now :D
     
  25. 3N16MA macrumors 65816

    3N16MA

    Joined:
    Jul 23, 2009
    Location:
    Space
    #25
    I don't open any PDF's that come from unknown sources either. If I don't know who sent it then it gets deleted. If someone took over a site like suggested in this thread then I have no control over something like that. However it seems like someone can come up with any far fetched plan that could get me to open a PDF.
     

Share This Page