[soh20]

There was quite a buzz about this lately on the www , starting with MuscleNerd telling everybody not to attempt any jailbreaks using DefCon’s WiFi. So what exactly is happening? Basically when you jailbreak using JailbreakMe, the exploit is being downloaded on your iOS device as a .pdf file, and then executed by the system.



This doesn’t necessarily mean that your iOS device is at risk, but since the ports are still open, and right now this is a known ‘issue’ anybody can inject malicious software onto your device.

Basically, you should avoid downloading stuff you did not authorize , and do not click on links from your MobileSafari. If you want to go from page to page, manually type the address.

But let’s take it one step forward and fix this problem:

Change default password:

First of all, you should change your default password ( alpine ) . If you don’t know how to do that, check out this tutorial… ( this should be some kind of a habit every-time you jailbreak )

Close loophole:

1. Install OpenSSH ( if not already installed )
2. Download this .deb file
3. Via SSH , browse to /private/var/mobile/ and copy the .deb file
4. Now load MobileTerminal on Mac or Putty on Windows and install the .deb file:

ssh root @ your IP
alpine ( or your new password )
dpkg -i com.willstrafach.pdfexploitwarner_1.0.0-4_iphoneos-arm.deb

Here’s a tutorial on how to auto-install .deb files, so you don’t mess with terminal shells and putty

cdevwill, the guy that released the patch, said the fix will also be released in Cydia. So if you have any difficulties installing the .deb file ( you shouldn’t ) , wait for the Cydia release.

NOTE: by installing this patch, you will be asked anytime you want to open a .pdf file, if you really want to open it. If you downloaded the file from a trusted source, you can tap on ‘Load’ . Otherwise, tap on ‘Cancel’

NOTE: this exploit can affect non-jailbroken users as well. But the only way to fix it, is to jailbreak your iOS device. Check out our tutorial here…





[via fsm]

[x-bot]

[dotAlexX]

I love how the only way to fix this security vulnerability is to have your device jailbroken, way to go apple.

[kest874]

Still waiting for my IP4 to ship, hope they don't fix this before the 19th....

[noi80]

The title should be revised. It makes it sound like the PDF exploit results after the jailbreak. It should read something like "HOW TO: Fix the PDF Exploit (Jailbreak Required)".

[mrmaff]

anyone else having problems with the clock.app after running this?

[SeksiBeefpile]

This fix is also now up on Cydia.

mrmaff - what problems specifically are you experiencing? I installed the PDF fix from Cydia and I don't seem to be having any issues

[mrmaff]

I have reinstalled the deb and the problems is still there. I get the view pdf warning message about 10 times then the clocks load as usual. The first time it happened the world clocks loaded but without hands.



I am on iPhone 4 with 4.0.1

[DaiC1]

SeksiBeefpile, on 03 August 2010 - 11:45 AM, said:

This fix is also now up on Cydia.

mrmaff - what problems specifically are you experiencing? I installed the PDF fix from Cydia and I don't seem to be having any issues

Is it "PDF Loading Warner" from BigBoss repo ?

[SeksiBeefpile]

mrmaff, on 03 August 2010 - 12:13 PM, said:

I have reinstalled the deb and the problems is still there. I get the view pdf warning message about 10 times then the clocks load as usual. The first time it happened the world clocks loaded but without hands.




I am on iPhone 4 with 4.0.1

Ahh yes I have the same issue with world clock. I just saw a tweet from cdevwill saying that he didn't realize the clock was using PDFs.

Here is the tweet: Dammit, I did nor account for some legacy apps such as "clock" using PDFs for vector graphics. Grrr.

This post has been edited by SeksiBeefpile: 03 August 2010 - 01:21 PM

[SeksiBeefpile]

DaiC1, on 03 August 2010 - 12:13 PM, said:

Is it "PDF Loading Warner" from BigBoss repo ?

Yes

[DaiC1]

SeksiBeefpile, on 03 August 2010 - 01:18 PM, said:

Ahh yes I have the same issue with world clock. I just saw a tweet from cdevwill saying that he didn't realize the clock was using PDFs.

Here is the tweet: Dammit, I did nor account for some legacy apps such as "clock" using PDFs for vector graphics. Grrr.

Yea just found this also any way to fix ?

[x5c0d3]

This is not a fix but a warner that pops up when you are about to open a pdf file. If you open a bad pdf file because you think it's okay you still can get owned.

This post has been edited by x5c0d3: 03 August 2010 - 02:47 PM

[mrmaff]

thanks for the feedback. hopefully a fix will be out soon

[SeksiBeefpile]

I'm sure the "fix" will come from Apple considering stock (unjailbroken) phones are vulnerable. They're kind of obligated to fix this exploit.

This is not really a fix that any of us want because I'm sure they'll couple it with something that ruins JBs and ULs

[StoneCut]

I confirm I have the same issue with the Clock and PDF Exploit Warner