Difference between revisions of "LibTiff Exploit"

From The iPhone Wiki
Jump to: navigation, search
m
 
(13 intermediate revisions by 8 users not shown)
Line 1: Line 1:
  +
{{lowercase}}
The LibTiff exploit was discovered by [http://taviso.decsystem.org Tavis Ormandy (Taviso)].<Br>
 
  +
The '''libTiff Exploit''' is an exploit that can be used to [[jailbreak]] iPhone OS 1.0-1.1.1. It is patched as of 1.1.2.
It was originally exploited by [http://www.cmw.me cmw] Aka Niacin and [http://www.toc2rta.com/ dre].<br>
 
  +
It was later modified by [http://www.metasploit.com MetaSploit] then adbopted by [http://www.jailbreakme.com Jailbreakme.com].
 
  +
It was used by [https://forums.macrumors.com/threads/377126/ planetbeing's jailbreak] and [[AppSnapp]]. [https://mtmdev.org/blog/mtm-devadmin/2018/ios-1-1-1-jailbreak cipher's] version was released in 2018 due to AppSnapp being offline.
<Br><br>
 
  +
Cmw was also responsible for creating the similar libtiff exploit for the PSP platform.<Br>
 
  +
== Credit ==
  +
[http://taviso.decsystem.org/ taviso], [[cmw]] (aka Niacin), Dre, [http://www.metasploit.com/ MetaSploit], rezn, dinopio, drudge, kroo, [[User:Pumpkin|pumpkin]], davidc, dunham, [[User:Planetbeing|planetbeing]], [[User:NerveGas|NerveGas]]
  +
  +
== Exploit ==
  +
There was a buffer overflow in the iPhone's libtiff. This was exploited to run a small application to jailbreak and patch libtiff. This exploit was also used for PSP homebrew, which [[cmw]] also worked on. The source code of the exploit was later released by [[cmw]] on his [http://toc2rta.com/?q=node/30 blog].
  +
  +
== Sources ==
  +
* http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3459
  +
  +
[[Category:Exploits]]

Latest revision as of 13:32, 9 October 2018

The libTiff Exploit is an exploit that can be used to jailbreak iPhone OS 1.0-1.1.1. It is patched as of 1.1.2.

It was used by planetbeing's jailbreak and AppSnapp. cipher's version was released in 2018 due to AppSnapp being offline.

Credit

taviso, cmw (aka Niacin), Dre, MetaSploit, rezn, dinopio, drudge, kroo, pumpkin, davidc, dunham, planetbeing, NerveGas

Exploit

There was a buffer overflow in the iPhone's libtiff. This was exploited to run a small application to jailbreak and patch libtiff. This exploit was also used for PSP homebrew, which cmw also worked on. The source code of the exploit was later released by cmw on his blog.

Sources