The iPhone Wiki is no longer updated. Visit this article on The Apple Wiki for current information. |
Difference between revisions of "LibTiff Exploit"
m |
m |
||
(12 intermediate revisions by 7 users not shown) | |||
Line 1: | Line 1: | ||
+ | {{lowercase}} |
||
− | The LibTiff exploit was discovered by [http://taviso.decsystem.org Tavis Ormandy (Taviso)].<Br> |
||
+ | The '''libTiff Exploit''' is an exploit that can be used to [[jailbreak]] iPhone OS 1.0-1.1.1. It is patched as of 1.1.2. |
||
− | It was originally exploited by [http://www.cmw.me cmw] Aka Niacin and [http://www.toc2rta.com/ dre].<br> |
||
+ | |||
− | It was later modified by [http://www.metasploit.com MetaSploit] then adopted by [http://www.jailbreakme.com Jailbreakme.com]. |
||
+ | It was used by [https://forums.macrumors.com/threads/377126/ planetbeing's jailbreak] and [[AppSnapp]]. [https://mtmdev.org/blog/mtm-devadmin/2018/ios-1-1-1-jailbreak cipher's] version was released in 2018 due to AppSnapp being offline. |
||
− | <Br><br> |
||
+ | |||
− | Cmw was also responsible for creating the similar libtiff exploit for the PSP platform.<Br> |
||
+ | == Credit == |
||
+ | [http://taviso.decsystem.org/ taviso], [[cmw]] (aka Niacin), Dre, [http://www.metasploit.com/ MetaSploit], rezn, dinopio, drudge, kroo, [[User:Pumpkin|pumpkin]], davidc, dunham, [[User:Planetbeing|planetbeing]], [[User:NerveGas|NerveGas]] |
||
+ | |||
+ | == Exploit == |
||
+ | There was a buffer overflow in the iPhone's libtiff. This was exploited to run a small application to jailbreak and patch libtiff. This exploit was also used for PSP homebrew, which [[cmw]] also worked on. The source code of the exploit was later released by [[cmw]] on his [http://toc2rta.com/?q=node/30 blog]. |
||
+ | |||
+ | == Sources == |
||
+ | * http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3459 |
||
+ | |||
+ | [[Category:Exploits]] |
Latest revision as of 13:32, 9 October 2018
The libTiff Exploit is an exploit that can be used to jailbreak iPhone OS 1.0-1.1.1. It is patched as of 1.1.2.
It was used by planetbeing's jailbreak and AppSnapp. cipher's version was released in 2018 due to AppSnapp being offline.
Credit
taviso, cmw (aka Niacin), Dre, MetaSploit, rezn, dinopio, drudge, kroo, pumpkin, davidc, dunham, planetbeing, NerveGas
Exploit
There was a buffer overflow in the iPhone's libtiff. This was exploited to run a small application to jailbreak and patch libtiff. This exploit was also used for PSP homebrew, which cmw also worked on. The source code of the exploit was later released by cmw on his blog.