Posted by planetbeing on under level interface, extence, iphone, reas, dev team, new image, out of the blue, svn, parser, vulnerability, futzing, lt, ibss, stock | 
So how did I manage to FIX the problem I mentioned earlier? The reason I was so vague on the details is that I used a confidential iBoot vulnerability that we didn't want Apple to know even existed! This allowed me to bootstrap openiboot directly from a stock iBSS that was loaded through DFU mode. I still can't tell you exactly what it is, but since geohot already leaked the existence of it, I figure I can tell you it exists and is what I used. :)
Then, it was a simple matter of using openiboot's NOR engine to restore everything. I even can use the new image list parser and AES engine to have a very nice high level interface to the image list, allowing me to "pwn" just with openiboot; no ramdisk futzing around!
The AES code has been in SVN for awhile, but to anyone following jailbreaking news, it's probably obvious why I suddenly, out of the blue, decided to reverse it and write it. Haha. So the night that I committed the AES code, is the night the Dev Team first decrypted the new img3 shit. :)
Tagi: level interface, extence, iphone, reas, dev team, new image, out of the blue, svn, parser, vulnerability, futzing, lt, ibss, stock
Posted by on under routers, blogger, vulnerability, time warner, remote attack |
A blogger who stumbled across a vulnerability in more than 65,000 Time Warner customer routers says the routers are still vulnerable to remote attack despite claims by the company last week that it patched the routers.But according to Chen, the routers have not been fixed as of today.
Tagi: routers, blogger, vulnerability, time warner, remote attack
Posted by on under th problem, security researchers, mdash, foreground, vulnerability, adobe flash |
An anonymous reader writes "Security researchers at Foreground Security have found an issue with Adobe Flash. Any site that allows files to be uploaded could be vulnerable to this issue (whether they serve Flash or not!). Adobe has said that no easy fix exists and no patch is forthcoming. Adobe puts the responsibility on the website administrators themselves to fix this problem, but they themselves seem to be vulnerable to these problems. Every user with Flash installed is vulnerable to this new type of attack and — until IT administrators fix their sites — will continue to be."
Read more of this story at Slashdot.
Tagi: th problem, security researchers, mdash, foreground, vulnerability, adobe flash
Posted by on under bruce schneier, software host, host systems, fips 140, german company, security flaw, flash drives, flash drive, nist, crypto, systems security, vulnerability, algorithm |
Lucas123 writes with a followup to news we discussed earlier this week that the encryption on NIST-certified flash drives was cracked. "A number of leading manufacturers of encrypted flash drives have warned their customers of a security flaw uncovered by a German company. The devices in question use the AES 256-bit encryption algorithm and have been certified using the FIPS 140-2, but the flaw appears to circumvent the certification process by uncovering the password authentication code on host systems. The National Institute of Standards and Technology said it's investigating whether it needs to modify its standards to include password authentication software on host systems. Security specialist Bruce Schneier was blunt in his characterization of the flaw: 'It's a stupid crypto mistake and they screwed up and they should be rightfully embarrassed for making it.'"
Read more of this story at Slashdot.
Tagi: bruce schneier, software host, host systems, fips 140, german company, security flaw, flash drives, flash drive, nist, crypto, systems security, vulnerability, algorithm
Posted by on under german hacker, target, familiar face, comete, 64 bit windows, nils, vulnerability, firefox, hack |
The first day of the Pwn2Own hacker challenge wrapped up with a familiar face going after a familiar target. And, for the second year in a row, a German hacker known simply as “Nils” exploited a previously unknown vulnerability in Mozilla Firefox to take complete control of a 64-bit Windows 7 machine.
Tagi: german hacker, target, familiar face, comete, 64 bit windows, nils, vulnerability, firefox, hack
