AT+XLOG Vulnerability

From The iPhone Wiki
Revision as of 08:33, 11 July 2009 by Secretmrx (talk | contribs)
Jump to: navigation, search

Used as an injection vector for the current iPhone 3G and iPhone 3GS unlock payload - ultrasn0w. Currently available in all baseband versions until 04.26.08.

Credit

Oranav

Exploit

There is a buffer overflow in the AT+XLOG=1,"..." command, which allows unsigned code execution on the X-Gold 608.

Implementation

The exploit is used in ultrasn0w.