The iPhone Wiki is no longer updated. Visit this article on The Apple Wiki for current information. |
Diags (iBoot command)
Revision as of 01:22, 29 November 2008 by MuscleNerd (talk | contribs)
This was an exploit in pre 2.0 versions of iBoot
Credit
Exploit
This is a very simple exploit. In earlier iBoots, if a parameter was given to the 'diags' command, then it would jump to whatever address argv[1] specified, but not before disabling the GPIO devices. You can run unsigned code on the baseband using this, but the GPIOs need to be restored first.
In 2.0 iBoots, they check the permission register for this command, so the exploit doesn't work.