https://www.theiphonewiki.com/w/api.php?action=feedcontributions&feedformat=atom&user=4039jbuserThe iPhone Wiki - User contributions [en]2026-06-09T06:49:45ZUser contributionsMediaWiki 1.31.14https://www.theiphonewiki.com/w/index.php?title=LibTiff_Exploit&diff=70796LibTiff Exploit2018-10-08T19:04:11Z<p>4039jbuser: </p>
<hr />
<div>{{lowercase}}<br />
The '''libTiff Exploit''' is used to jailbreak firmware 1.1.1. It is used by [https://forums.macrumors.com/threads/377126/ planetbeing's jailbreak] as well as [[AppSnapp]]. <br />
<br />
This is exploitable on all previous firmwares (1.0-1.1) as well, as proven in the 4039JB. <br />
<br />
== Credit ==<br />
[http://taviso.decsystem.org/ taviso], [[cmw]] (aka Niacin), Dre, [http://www.metasploit.com/ MetaSploit], rezn, dinopio, drudge, kroo, [[User:Pumpkin|pumpkin]], davidc, dunham, [[User:Planetbeing|planetbeing]], [[User:NerveGas|NerveGas]]<br />
<br />
== Exploit ==<br />
There was a buffer overflow in the iPhone's libtiff. This was exploited to run a small application to jailbreak and patch libtiff. This exploit was also used for PSP homebrew, which [[cmw]] also worked on. The source code of the exploit was later released by [[cmw]] on his [http://toc2rta.com/?q=node/30 blog].<br />
<br />
== Sources ==<br />
* http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3459<br />
<br />
[[Category:Exploits]]</div>4039jbuser