[HOW TO] Stop Worrying About the JailbreakMe Exploit

[Mystikal]

1) Open Cydia
2) Download this package

Now, when you open a PDF, it will ask you to either Load or Cancel it. This is what will happen: (http://twitter.com/cdevwill/status/20131127970)

(picture taken from cdevwill's twitter account.

 

[boshii]

why would one want to patch the exploit?

 

[Mystikal]

why would one want to patch the exploit?

Its a security risk. https://www.macrumors.com/2010/08/02/ios4-jailbreak-bring-security-concerns/

 

[illutionz]

why would one want to patch the exploit?

So if you're getting the malicious PDF, they can't take over the whole phone. Plus once you jailbroke it, it doesn't matter whether you close the exploit... and you can uninstall the "fix" too if you so wish

 

[iphonedude123]

1) Open Cydia
2) Download this package


Now, when you open a PDF, it will ask you to either Load or Cancel it.

THIS DOESN'T PATCH THE EXPLOIT. It just warns you when opening a PDF.

Change the title.

 

[CocoaPuffs]

why would one want to patch the exploit?

You are indeed confused. The exploit opens up door for malicious websites to take over your phone.

 

[thep33t]

THIS DOESN'T PATCH THE EXPLOIT. It just warns you when opening a PDF.

Change the title.

is it a fix?

no.


Is it a patch to stop a webpage from automatically redirecting you to a infected PDF w/o your knowledge? YES

 

[Mystikal]

is it a fix?

no.


Is it a patch to stop a webpage from automatically redirecting you to a infected PDF w/o your knowledge? YES

Changed cause I had a revelation in the shower.

 

[thep33t]

Changed cause I had a revelation in the shower.

I thought your old title was fine...

 

[iphonedude123]

is it a fix?

no.


Is it a patch to stop a webpage from automatically redirecting you to a infected PDF w/o your knowledge? YES

clearly you have absolutely no idea what the word patch means.

 

[sushi]

clearly you have absolutely no idea what the word patch means.

Well then. Why don't you explain what a patch is?

 

[Mystikal]

I thought your old title was fine...

Yeah but it wasnt a patch. This is just a window that pops up:

 

[thep33t]

For security patches, I have always gone by the idea that it needs to either fix, or mitigate the threat. This one does not fix it, but rather just mitigates the threat by making you aware that you are opening a pdf.

But then again, what do I know? I must not be as knowledgeable as you...

 

[gaspony]

Has anybody done the PDF Fix under the Elpelle6 repository. Would this actually fix the security breach?

 

[Mr. Chewbacca]

Done, thanks for the heads up!

 

[doolin.nc]

Don't waste your time. The dev team already said it was more than just PDFs. You could do that exploit with other document formats as well...and now it's more likely to happen because, obviously, "hackers" probably know that by now.