Oh brother.
Yes! Yes! Turning on your phone will make it be teh haxor target!1!1
Wait
no it won't.
How likely are you to come up against a PDF from a legitimate website that has this exploit? (not astalavisa.box.sk/PDFEXPLOITiPHONETEST.pdf)
Not terribly likely, but trusted, legitimate sites have been hacked before and resulted in trojans and worms being spread to unsuspecting users. (Windows users, anyway.)
Better yet, does ANYONE have a sample of the payload in action besides the jailbreak?
Ah. Arguing from ignorance.
Aboslutely *anybody* can get the sample payload by visiting the jailbreak site with a browser set up to 'look like' Safari on iPhone.
I'm not saying this isn't serious, but foaming at the mouth fantasizing about exploding hacked iPhones is FUD.
Nope. It's a very real threat. Odds are Apple is busy running a 4.0.2 update through their testing process so they can release it ASAP.
Anywho, On some third party sites people are very skewed on the situation.
Hackers target SSH enabled phones with default passwords -> JailBroken iPhones hacked -> iPhones Hacked -> Headline: iPhone is the most unsecured phone on the planet nobody is safe.
True, that was bad reporting.
Jailbreak uses PDF exploit -> PDFs hack iPhone -> iPhones Hacked -> Headline : iPhone is the most unsecured phone on the planet doom is inevitable.
You're missing the first step to this chain though, which greatly changes the accuracy of the reporting.
iPhone has remote root exploit -> Jailbreak uses PDF exploit -> PDFs hack iPhone -> iPhones Hacked -> Headline : iPhone is the most unsecured phone on the planet doom is inevitable
BTW i'm 100% pro jailbreak because I know they are a talented bunch. Even if you disagree with "the movement", every time they exploit something that's another thing that Apple clearly missed and will have patched in the next revision. The time in between an exploits uncovering and it's patching may have you feeling vulnerable, but so far most (if not all?) exploits have been cooked up in the lab and POC to death-To date there haven't been any wild outbreaks that affect non-jb users.
I think the jailbreaking teams provide a useful service to people. Unfortunately, this isn't a route they should have used. This is an exploit that they should simply have alerted Apple to, rather than releasing an exploit to the wild.
Why? The way they did it, they have people *complaining* that Apple wants to fix an remote root exploit that doesn't even require an affirmative action from the user. Basic security 101 says that's the *worst* sort of exploit, and it should be fixed ASAP. In fact, this is the sort of fix that I'd support Apple 'forcing' on everyone by not letting them connect to the App Store until they'd done the update.
... my firm is fine, thanks. All of my boxes are tended to with TLC.
Hopefully not by you.
Tell you what. You show me one person who has gotten "owned" by this exploit in the wild and...
...Wait a minute. You didn't answer my question earlier. Do YOU have access to the payload? Can you link me? is there a white paper I can read? Exactly how many people have access to the exploit?
No way to know, but I can guarantee it's more than just the jailbreak team. (Someone posted the hex dump of the PDF file to an earlier thread, demonstrating that it is more than possible to get access to the exploit.) Should we assume that just because we don't know who has it, it's not dangerous? I agree with WRX. I hope for the sake of whatever company you work for, you have nothing to do with systems security. You simply don't seem understand even the most basic aspects of the issue.
Like I said earlier, this is a serious hole BUT there have been no outbreaks in the past and as far as we know Comex et al are the only ones on the planet (besides Apple) who know whats what , so pretending that people are walking around getting hacked is just plain silly.
Anybody who has used the jailbreak site has had their iPhone 'owned' by this exploit. The fact that the currently most known people who are utilizing this exploit are not malicious doesn't change the fact that the flaw is exceedingly dangerous.
