August 27, 2014

Apple Releases iOS 4.3.4 to Fix Vulnerabilities – Jailbreakers Quick to React

(LiveHacking.Com) — Apple has released iOS 4.3.4 for the iPhone 3GS, the iPhone 4 (GSM model), the iPod touch (3rd generation and later) and for the iPad. The main purpose of iOS 4.3.4 is to close a hole in the PDF viewer which is used by JailBreakMe.com. It allowed users to jailbreak any iDevice (including iPad 2) through the website.

Specifically iOS 4.3.4 deals with the following security issues:

  • Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution. – A buffer overflow exists in FreeType’s handling of TrueType fonts. Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution.
  • Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution. – A signedness issue exists in FreeType’s handling of Type 1 fonts. Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution.
  • Malicious code running as the user may gain system privileges. – An invalid type conversion issue exists in the use of IOMobileFrameBuffer queueing primitives, which may allow malicious code running as the user to gain system privileges.
The update renders the JailBreakMe.com jail break useless. However users running 4.3.3 can still use the site to jailbreak their devices. However the Redmond Pie web site has posted details on a tethered jailbreak for iOS 4.3.4 using the PwnageTool. A tethered jailbreak means that if your device loses power or restarts then you would have to boot it into the jailbroken state again while connected to your desktop computer.

iOS 4.2.1 Fixes Over 40 Vulnerabilities But Tools Already Out to Jailbreak All Devices

The release of iOS 4.2.1 for the iPad, iPhone and iPod Touch was important not only for the new features like multitasking and folders for the iPad, and AirPlay & AirPrint for all iDevices, but also because it plugged over 40 security holes in the OS.

Most of the vulnerabilities (at least 27) are within the Safari WebKit-based browser engine, these holes had previously left iOS open to remote code execution attacks, which means that victims needed only to visit a specially crafted web site to be infected with malware.

It is essential for all iDevice users to update to iOS 4.2.1 as soon as possible to remain safe and secure while using their devices for web browsing.

However, it hasn’t taken long for hackers to jailbreak this new version of iOS. It is now being reported that the Redsn0w jailbreak is already live for iOS 4.2.1 on all devices (including the iPad). The current range of jailbreaking tools all use a vulnerability in the boot rom, which can’t be fixed by a software patch (only shipping new devices with a new boot rom will close the hole). In short this means that all all iOS devices are capable of being jailbroken using this same single method.

But with iOS 4.2.1 fresh out of the door, peculation has already begun about version iOS 4.3. The whispers are that 4.3 could be out during December and add app subscriptions, which would allow recurring charges for magazine publishers and other periodical content providers.