The iPhone Wiki is no longer updated. Visit this article on The Apple Wiki for current information. |
Difference between revisions of "S5L8900"
Line 21: | Line 21: | ||
Haxed by 1337Urmom at The Pois0nhack team |
Haxed by 1337Urmom at The Pois0nhack team |
||
− | ===[[ |
+ | === [[Kernel]] === |
+ | * [[BPF STX Kernel Write Exploit]] - Works up to [[iOS]] 3.1.3 |
||
− | * [[Restore Mode]] - Firmware v1.0.2 and below |
||
+ | * [[IOSurface Kernel Exploit]] - Works up to [[iOS]] 4.0.1 |
||
− | * [[Symlinks]] - Firmware v1.1.1 and below |
||
+ | |||
− | * [[LibTiff]] - Firmware v1.1.1 and below |
||
+ | === [[Userland]] === |
||
− | * [[Mknod]] - Firmware v1.1.2 and below |
||
+ | * [[LibTiff]] - Works up to [[iOS]] 1.1.1 |
||
− | * [[MobileBackup Copy Exploit]] - Firmware 3.1.3 and below |
||
− | * [[ |
+ | * [[Symlinks]] - Works up to [[iOS]] 1.1.1 |
− | * [[ |
+ | * [[Mknod]] - Works up to [[iOS]] 1.1.2 |
+ | * [[Dual Boot Exploit]] - Works up to [[iOS]] 2.0 beta 3 |
||
+ | * [[MobileBackup Copy Exploit]] - Works up to [[iOS]] 3.1.3 |
||
+ | * [[PDF CFF Font Stack Overflow]] - Works up to [[iOS]] 4.0.1 |
||
===Boot Chain=== |
===Boot Chain=== |
Revision as of 02:20, 23 September 2010
Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team
Exploits
iBoot
Note: iBoot on the S5L8720 can be downgraded, allowing any of these exploits to be used on future firmwares
- Restore Mode - Works up to iOS 1.0.2
- Ramdisk Hack - Works up to iOS 2.0 beta 3
- diags - Works up to iOS 2.0 beta 5
- ARM7 Go - Works on iOS 2.1.1
- iBoot Environment Variable Overflow - Works up to iOS 3.1 beta 3
- usb_control_msg(0x21, 2) Exploit - Works up to iOS 3.1.2
Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team
Kernel
- BPF STX Kernel Write Exploit - Works up to iOS 3.1.3
- IOSurface Kernel Exploit - Works up to iOS 4.0.1
Userland
- Symlinks - Works up to iOS 1.1.1
- LibTiff - Works up to iOS 1.1.1
- Mknod - Works up to iOS 1.1.2
- Dual Boot Exploit - Works up to iOS 2.0 beta 3
- MobileBackup Copy Exploit - Works up to iOS 3.1.3
- PDF CFF Font Stack Overflow - Works up to iOS 4.0.1
Boot Chain
VROM->LLB->iBoot->Kernel->System Software
Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team
Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team
Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team
Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team Haxed by 1337Urmom at The Pois0nhack team