Apple To Fix iOS PDF Bug, Close JailbreakMe Hole

Advertisement

The latest incarnation of JailbreakMe.com recently went live, offering iPhone, iPad, and iPod touch users a dead-simple way to gain full access to their hardware. Near-simultaneously, Germany’s Federal Office for Information Security warned Apple about an iOS vulnerability in its handling of PDF files, creating a serious security hole. If any of this sounds familiar to you, it should, because nearly the same saga played out last summer. This time, it looks like it will conclude in a similar fashion, with Apple releasing an update that fixes the vulnerability and stops the jailbreak.

The issue at the core of this is that, without a legit way for users to jailbreak their smartphones, the tools that do so rely on iOS exploits to escalate their privileges and modify system files. The JailbreakMe website relies on an exploit in PDF parsing in order to hijack the system and do its business; problem is, there’s nothing stopping someone from creating a website that maliciously hosts a file using that same exploit in order to reek havoc on your phone.

After the warning from Germany, Apple announced it was working on an update to correct the bug. As a consequence, JailbreakMe.com will no longer function after the vulnerability is patched. Look for Apple’s solution to arrive within the next week or so.

Source: AP

Via: GigaOM

Share This Post
Advertisement
What's your reaction?
Love It
0%
Like It
0%
Want It
0%
Had It
0%
Hated It
0%
About The Author
Stephen Schenck
Stephen has been writing about electronics since 2008, which only serves to frustrate him that he waited so long to combine his love of gadgets and his degree in writing. In his spare time, he collects console and arcade game hardware, is a motorcycle enthusiast, and enjoys trapping blue crabs. Stephen's first mobile device was a 624 MHz Dell Axim X30, which he's convinced is still a viable platform. Stephen longs for a market where phones are sold independently of service, and bandwidth is cheap and plentiful; he's not holding his breath. In the meantime, he devours smartphone news and tries to sort out the juicy bitsRead more about Stephen Schenck!