The iPhone Wiki is no longer updated. Visit this article on The Apple Wiki for current information.

AT+XLOG Vulnerability

From The iPhone Wiki
Revision as of 11:37, 23 June 2009 by Oranav (talk | contribs)
Jump to: navigation, search

Used as an injection vector for the current iPhone 3G unlock payload - ultrasn0w. Currently available in all baseband versions, but it's very likely that Apple will close this exploit in the next baseband update.

Credit

Oranav

Exploit

There is a buffer overflow in the AT+XLOG=1,"..." command, which allows unsigned code execution on the iPhone 3G baseband.

Implementation

The exploit is used in ultrasn0w.

Retrieved from "https://www.theiphonewiki.com/w/index.php?title=AT%2BXLOG_Vulnerability&oldid=3898"