Skip to main content

pod2g

See All Stories
Site default logo image

evasi0n Jailbreakers reveal the incredibly complicated methods they used to Jailbreak every Apple iOS device

Forbes posted an article on Tuesday that gave some updates on the highly successful launch of the evasi0n jailbreak tool straight from its creators. After having officially released the jailbreak yesterday at noon, according to stats from Cydia’s Jay Freeman, around 1.7 million people have decided to jailbreak their iOS device. Perhaps more interesting is a description of how exactly the four members of the evad3rds team were able to get the job done. Team member David Wang, aka @planetbeing, walked through the process with Forbes:

Evasi0n alters the socket that allows programs to communicate with a program called Launch Daemon, abbreviated launchd, a master process that loads first whenever an iOS device boots up and can launch applications that require “root” privileges, a step beyond the control of the OS than users are granted by default. That means that whenever an iPhone or iPad’s mobile backup runs, it automatically grants all programs access to the time zone file and, thanks to the symbolic link trick, access to launchd.

Wang described the entire process from finding the initial exploit in the iOS mobile backup system to accessing Launch Daemon and getting around code signing and restrictions at the kernel layer:

Once it’s beaten ASLR, the jailbreak uses one final bug in iOS’s USB interface that passes an address in the kernel’s memory to a program and “naively expects the user to pass it back unmolested,” according to Wang. That allows evasi0n to write to any part of the kernel it wants. The first place it writes is to the part of the kernel that restricts changes to its code–the hacker equivalent of wishing for more wishes.  ”Once you get into the kernel, no security matters any more,” says Wang. “Then we win.”

Go to Forbes to read Wang’s entire step-by-step description of the jailbreak process for evasi0n.

Here’s another third-party analysis. The verdict is the same: incredible work.

New iPad jailbroken within hours

Site default logo image

That did not take long. Just hours after today’s launch of the new iPad, jailbreaker MuscleNerd posted (via iFans) screenshots of what he claimed is a jailbroken third-generation iPad. Do not get too excited, because MuscleNerd warned there is “still lots of work to do.” Therefore, the jailbreak is far from prime time. There is “No ETA,” but he provided screenshots of Cydia running for further proof that it is on the way. We will keep you updated as progress is made.

Over on the Dev-Team Blog, a new post noted: “It’s impossible to predict how or when these things turn out,” but the team also highlighted the progress made so far with iOS 5.1, as well as the possibility of jailbreaking the new iPad.

Go past the break for the full breakdown.


Expand
Expanding
Close

First untethered jailbreak for iOS 5.0.1 available for non-A5 devices now

Site default logo image

[youtube=http://www.youtube.com/watch?feature=player_embedded&v=kp_Mz6rs9fc]

We got a sneak peak at the first untethered jailbreak for iOS 5.0.1 earlier this month, and now Dev Team just announced @pod2g has made the solution available for non-A5 devices. That means iPad 2 and iPhone 4S are obviously left out on this one, but the chronic devteam and iPhone devteam have been working hard to package it into redsn0w 0.9.1.0 and PwnageTool for everyone else.

The post mentions pod2g is working on a solution for iPhone 4S and iPad, but it warns A5 devices “cannot use geohot’s limera1n exploit to inject the untether, they require exploits above and beyond those used for this release.”

If you are interested in giving it a shot, you can grab it through Cydia and follow the steps below (via Dev-Team Blog):


Expand
Expanding
Close

Manage push notifications

notification icon
We would like to show you notifications for the latest news and updates.
notification icon
You are subscribed to notifications
notification icon
We would like to show you notifications for the latest news and updates.
notification icon
You are subscribed to notifications