iPhone Jailbreak Uses a PDF Display Vulnerability

← Back to Stories (view on slashdot.org)

iPhone Jailbreak Uses a PDF Display Vulnerability

Posted by kdawson on Tuesday August 3, 2010 @10:11AM from the get-out-of-jail-free dept.

adeelarshad82 writes "Latest reports indicate that the website that 'jailbreaks' iPhones, iPads, and iPod Touches does so by means of a PDF-based vulnerability in OS X. PDF parsing and rendering is a core feature of OS X, and there have been several other vulnerabilities in the past in iOS CoreGraphics PDF components." As Gruber points out, the proper term for this is not "jailbreak," but "remote code exploit in the wild."

13 of 289 comments (clear)

PDF by ae1294 · 2010-08-03 10:12 · Score: 3, Funny

I forget can some one remind me what P.D.F. stands for again?
1. Re:PDF by Anonymous Coward · 2010-08-03 10:49 · Score: 4, Funny
  
  P. D. F = P0wn Da Fone?
2. Re:PDF by rudy_wayne · 2010-08-03 11:11 · Score: 2, Funny
  
  I thought it was "Portable Document Format",
  
  Based on the number of flaws, I would call it "Problematic Document Format".
3. Re:PDF by ae1294 · 2010-08-03 15:19 · Score: 5, Funny
  
  The joke is that this so-called "document format" is going way outside its original scope and now supports so much scripting that it might as well be a library for executable files.
  I'm going to start sending out all my resumes in dll format... I think it's safer that way...
Does not compute... by chaboud · 2010-08-03 10:12 · Score: 4, Funny

Didn't you know that Apple is more secure?
As soon as I saw "computer-free jailbreak, straight from your browser" I thought "oh man.. here we go."
1. Re:Does not compute... by magsol · 2010-08-03 10:16 · Score: 5, Funny
  
  "It just works!...even though it's not actually supposed to!"
  
  --
  "I'd just like to emphasise that taking a million years isn't a metaphor here..." -Rich Bradshaw
2. Re:Does not compute... by Anonymous Coward · 2010-08-03 20:16 · Score: 1, Funny
  
  Apple will have a press conference on Friday about the exploit. Apparently all phones can be jailbroken, which they will demonstration on a Droid, WinMo & Blackberry. The amount of iPhone4's jailbroken due to this exploit is only 1 per 100 more than previous generations. The number of calls to Apple's support lines regarding this problem is only .01%. If you don't like the exploit, return the phone for a full refund. And finally, they will be giving away free bumpers which fix the problem (the bumper covers the touchscreen).
Say it with me... by warrax_666 · 2010-08-03 10:22 · Score: 5, Funny

It stands for PeDoFile.

--
HAND.
1. Re:Say it with me... by ildon · 2010-08-03 11:50 · Score: 2, Funny
  
  Did you say Peter File?
LOL by Spazntwich · 2010-08-03 10:26 · Score: 5, Funny

"Just don't render it that way." - Adobe
Re:Jailbreak WARNING!!! by Anonymous Coward · 2010-08-03 10:36 · Score: 5, Funny

BREAKING NEWS!
Your attention please. We have a very important announcement to make. Listen carefully, because what we have to say MAY SAVE YOUR LIFE!
Today's top story: Hacks can have unintended consequences.
That is all.
Re:This is really tiresome by plover · 2010-08-03 10:38 · Score: 4, Funny

I saw a brilliant slide at Blackhat last week that sums it up perfectly (same vendor, different product)
Native Security Functionality of Adobe Flash
[ This slide intentionally left blank ]

--
John
Re:The new jailbreak is amazing by cbhacking · 2010-08-03 11:21 · Score: 2, Funny

That's the Apple stance on kernel-level remote code execution exploits: It Just Works!

--
There's no place I could be, since I've found Serenity...