Rezultati 1 do 9 od 9

Tema: checkm8 novi bootrom exploit za sve uredjaje do A5-A11 i za sve buduce iOS verzije

  1. #1
    Administrator zabrljanje avatar
    Datum registracije
    23.07.2011
    Lokacija
    Beograd
    Poruke
    19.131
    Thanks
    950
    Thanked 8.281 Times in 5.750 Posts

    Podrazumevano checkm8 novi bootrom exploit za sve uredjaje do A5-A11 i za sve buduce iOS verzije

    Novitet u jailbreak zajednici dolazi od cuvenog developera axi0mX koji je tokom dana objavio checkm8, novi bootrom exploit za sve uredjaje od A5-A11 i za sve bivse i buduce iOS verzije.






    EPIC JAILBREAK: Introducing checkm8 (read "checkmate"), a permanent unpatchable bootrom exploit for hundreds of millions of iOS devices.

    Most generations of iPhones and iPads are vulnerable: from iPhone 4S (A5 chip) to iPhone 8 and iPhone X (A11 chip).


    https://github.com/axi0mX/ipwndfu
    https://twitter.com/axi0mX/status/1177542201670168576





    Porede ga sa Geohotovim Limera1n. Prakticno je poslednji ovakav exploit bio 2010. godine kad je izasao iPhone 4.

    Ovaj bootrom exploit je trajan za sve uredjaje od 4S do X (A5-A11) i ne moze da se zakrpi.

    Bootrom exploit je veoma redak i odnosi se na hardver a ne na softver i zato na ovim iUredjajima ne moze da bude zakrpljen u novim verzijama iOS-a. To znaci da svi ovi iUredjaji mogu da imaju dozivotni jailbreak, ako ga neko napravi korsiteci ovaj bootrom exploit.

    Jos jedna velika stvar je sto prakticno omogucava downgrade na bilo koju verziju iOS-a, racunajuci i one koje Apple ne potpisuje.

    Sve ovo je jos daleko od pravog jailbreaka posto je potrebno da se ovaj bootrom exploit iskoristi i napravi adekvatan alat.

    2/ What I am releasing today is not a full jailbreak with Cydia, just an exploit. Researchers and developers can use it to dump SecureROM, decrypt keybags with AES engine, and demote the device to enable JTAG. You still need additional hardware and software to use JTAG.
    https://twitter.com/axi0mX/status/1177542512996544512



    Vazno je da naglasimo da je ovo iskljucivo tethered jailbreak i da ne mozete iUredjaj da ubacite, nakon restarta, u jailbreak-ovano stanje, ili uopste pokrenete, ako nemate komp i konekciju preko USB porta koji je neophodan kao konekcija.

    5/ During iOS 12 betas in summer 2018, Apple patched a critical use-after-free vulnerability in iBoot USB code. This vulnerability can only be triggered over USB and requires physical access. It cannot be exploited remotely. I am sure many researchers have seen that patch.
    https://twitter.com/axi0mX/status/1177544539046703104



    GeoSn0w

    Keep in mind that a jailbreak with this bootrom exploit would be tethered (you need a computer for every reboot), otherwise the phone wouldn't even boot to stock mode. It's cool but I doubt people still want fully tethered jailbreaks. It's cool for downgrades and newest ver JB
    https://twitter.com/FCE365/status/1177569618489225216


    Ovo je definitivno jedna od najvecih vesti u jailbreak zajednici nakon skoro jedne decenije razvoja razlicitih jailbreak alata.

    This means that all of the devices mentioned in that tweet will be publicly jailbreakable for their entire lifetime (That means every iOS version that is present and will come in the future) — Amazing work @axi0mX.

    https://twitter.com/axi0mX/status/11...670168576?s=20
    https://twitter.com/Pwn20wnd/status/1177548471756214273


    Pwn20wnd je napisao

    I might start working on a tool to generate custom IPSWs with Cydia and kernel patches — You should be able to jailbreak pretty much every firmware with something like that. https://twitter.com/Pwn20wnd/status/1177549001496772608
    https://twitter.com/Pwn20wnd/status/1177549412978974720

    This is the most powerful exploit for modern iPhones ever — It is actually trivial to install a custom IPSW and make it give TFP0 to unc0ver.
    https://twitter.com/Jakeashacks/stat...52342817943552




    Lepa najava je i da ce ovo verovatno omoguciti downgrade bez SHSH nevezano za SEP komptaibilnost

    If this new bug isn't untethered, it will at least probably allow untethered downgrades with SHSH blobs (regardless of SEP compatibility!)
    https://twitter.com/Jakeashacks/stat...54154253930497


    @Morpheus misli da ce svaki boot bez validnih SHSH mirati da bude tethered, tacnije, vazan za komp


    Further emphases:

    - iOS version won’t matter- iDevice matters: any 64bit before 2018 (8/X, iPod 6, iPad 4/pro, etc)


    - iCloud lock bypass is partial; AAPL can detect/relock when connected to internet.


    - Every boot without valid SHSH blob, or to custom OS must be tethered.


    Slika bootrom exploita koju je postavio GeoSn0w i koji radi na iPod Touch 7




    https://twitter.com/FCE365/status/1177558724719853568




    @Morpheus

    Not "possibly the biggest". THE Biggest.

    Congratulations to @axi0mx! Thankfully AAPL eventually patched this - the stuff Cellebrite , Grey key etc base their entire business model on.


    For researchers,this is a great boon:Brings back tethered, JB&opens up dual boot, for life! https://twitter.com/axi0mX/status/1177542362853040129

  2. The Following 4 Users Say Thank You to zabrljanje For This Useful Post:

    Goxy86 (27.09.2019),iJoker (27.09.2019),kylle (27.09.2019),torla (28.09.2019)

  3. #2
    Administrator zabrljanje avatar
    Datum registracije
    23.07.2011
    Lokacija
    Beograd
    Poruke
    19.131
    Thanks
    950
    Thanked 8.281 Times in 5.750 Posts

    Podrazumevano Re: checkm8 novi bootrom exploit za sve uredjaje do A5-A11 i za sve buduce iOS verzije

    Da nastavimo sa daljim novitetima iz jailbreak zajednice


    @Morpheus navodi da svi A5-A11 iUredjai mogu da se sa njim boot-uju na svaku bivsu i buducu iOS verziju bez SHSH/APTickets

    Non techie version:

    Any iPhone 8/X or earlier can now be:


    - booted to any iOS version, past/present/future, with no SHSH/APTickets


    - booted to any OS (e.g. Android)


    - compromised by attacker w/physical access, but still requires password (or brute force)for private data
    https://twitter.com/Morpheus______/s...74298791370752


    @Jakeashacks

    Neko je pomenuo dual boot

    this would mean that you either:- have a full downgrade but tethered
    - have both downgraded and legitimate iOS installs (you can boot downgraded version with PC, but if you reboot, you go back to newer iOS)
    https://twitter.com/Jakeashacks/stat...92495825457154

  4. #3
    iPhoneBigFan aw_snap avatar
    Datum registracije
    27.07.2018
    Lokacija
    Novi Sad, Serbia
    Godina
    29
    Poruke
    185
    Thanks
    416
    Thanked 88 Times in 55 Posts

    Podrazumevano Re: checkm8 novi bootrom exploit za sve uredjaje do A5-A11 i za sve buduce iOS verzije

    Šteta što nema podrške za A12...

  5. #4
    iPhoneBigFan iJoker avatar
    Datum registracije
    06.04.2015
    Poruke
    302
    Thanks
    95
    Thanked 161 Times in 97 Posts

    Podrazumevano Re: checkm8 novi bootrom exploit za sve uredjaje do A5-A11 i za sve buduce iOS verzije


  6. The Following User Says Thank You to iJoker For This Useful Post:

    vdunic (29.09.2019)

  7. #5
    iPhoneBigFan
    Datum registracije
    08.11.2014
    Godina
    39
    Poruke
    204
    Thanks
    70
    Thanked 28 Times in 23 Posts

    Podrazumevano Re: checkm8 novi bootrom exploit za sve uredjaje do A5-A11 i za sve buduce iOS verzije

    Citirati Originalno postavljeno od aw_snap Pogledati poruku
    Šteta što nema podrške za A12...
    jos nije receno da nece moci da se iskoristi do ovog jutrosnjeg update-a ios 13.1.1
    misle valjda da ce moci da se uradi JB i na A12.
    Zabranjeno je reklamirati proizvode.

  8. #6
    Administrator zabrljanje avatar
    Datum registracije
    23.07.2011
    Lokacija
    Beograd
    Poruke
    19.131
    Thanks
    950
    Thanked 8.281 Times in 5.750 Posts

    Podrazumevano Re: checkm8 novi bootrom exploit za sve uredjaje do A5-A11 i za sve buduce iOS verzije

    Ovo je hardverski exploit i ne moze da se primeni na A12 iUredjaje.

  9. #7
    iModerator dzenopoljac avatar
    Datum registracije
    04.12.2009
    Lokacija
    Apple Universe
    Poruke
    7.456
    Thanks
    658
    Thanked 2.534 Times in 1.393 Posts

    Podrazumevano Odg: checkm8 novi bootrom exploit za sve uredjaje do A5-A11 i za sve buduce iOS verzije

    Evo zadnjeg update-a... Biće zanimljivo.


    https://youtu.be/qEQxQx14ZYM


  10. The Following 4 Users Say Thank You to dzenopoljac For This Useful Post:

    Zivansi (30.09.2019),djole1989 (30.09.2019),kylle (30.09.2019),spo (04.10.2019)

  11. #8
    iModerator dzenopoljac avatar
    Datum registracije
    04.12.2009
    Lokacija
    Apple Universe
    Poruke
    7.456
    Thanks
    658
    Thanked 2.534 Times in 1.393 Posts

    Podrazumevano Odg: checkm8 novi bootrom exploit za sve uredjaje do A5-A11 i za sve buduce iOS verzije

    Legendarni Will Strafach (a.k.a. chronic) se vraća na scenu...



  12. The Following 2 Users Say Thank You to dzenopoljac For This Useful Post:

    kylle (04.10.2019),mmilos82 (04.10.2019)

  13. #9
    iModerator dzenopoljac avatar
    Datum registracije
    04.12.2009
    Lokacija
    Apple Universe
    Poruke
    7.456
    Thanks
    658
    Thanked 2.534 Times in 1.393 Posts

    Podrazumevano Odg: checkm8 novi bootrom exploit za sve uredjaje do A5-A11 i za sve buduce iOS verzije

    Evo još jednog update-a


Informacije teme

Korisnici koji pretražuju ovu temu

Trenutno je 1 korisnik(a) koji pretražuje(u) ovu temu. (Članova: 0 - Gostiju: 1)

Ovlašćenja postavljanja

  • Vi ne možete postavljati nove teme
  • Vi ne možete postavljati odgovore
  • Vi ne možete postavljati priloge
  • Vi ne možete menjati vaše poruke
  •