[iScotty]

Mere hours after iOS 4.1 became available, an iPhone Dev-Team user Pod2g found a bootrom exploit, meaning that the new update is indeed jailbreakable. However, this one differs—and could cause Apple a lot of pain.

Due to the way the jailbreak accesses the OS, the only way Apple can fix it is reportedly by installing a "whole new processor rev," according to someone from inside the project who spoke to Boy Genius Report.

There was some confusion yesterday when the jailbreak first came to light, as the initial tweet from Pod2g said it was for 4.0.1, but actually it was for 4.1, as confirmed by the same tweeter and RedmondPie.

As to when you can jailbreak it, well the Dev-Team guys are still working on it, but have said that people would be better off ignoring the 4.1 update for now.


UPDATE: The same exploit is also said to be working on iPads and fourth-gen iPod Touches

[Via Gizmodo]

[x-bot]

[pkmaximum]

Well this is definitly something to look forward too. A nice permanent jailbreak for us. Not that I like android so much but It would sure piss my friend off if I could show him android running on my iphone faster than his device =)

[iBattaglia]

great cant wait

[cerodia]

Awesome news.

[Porsche]

Very good news !

[Mag1c]

sweet! im getting my hands on an iphone4 on the 28 will probably come with 4.1 and the JB hopefully will be out by then!

[jatinder]

Waiting for jailbreak eagerly

[dudizion]

Just give us a new version of UltraSn0w or something plz god plz

[XxITzPerronexX]

Hopefully It won't take as long as 4.0 did

[tonyph33r]

Can't wait to jailbreak my iPhone 4 factory unlocked I win from xsellize :-)

[piwan]

it's impossible to make the exploit untethered

[piwan]

<posixninja> basically, for a full jailbreak we will need at least 2 exploits, 1 initial vector exploit to execute code on the device and install the second exploit, and the second exploit to run on every boot to rejailbreak the device. This exploit cuts that down to only one exploit needed for a full jailbreak since we now have an unpatchable initial vector

[lolento]

AWESOME

[AJCrowley]

piwan, on 10 September 2010 - 12:19 AM, said:

it's impossible to make the exploit untethered

How do you come to that?

From what I understand, this exploit is in the bootrom, which guarantees that it will run untethered. Now all they need to do is get the code to run through this exploit (which is unlikely to be significantly different from JB code used in other iOS4 jailbreaks), and there will be an untethered jailbreak, with a hole in the bootrom that provides the same hole for them to execute JB code, regardless of any future software updates from Apple.

[piwan]

posixninja write it on irc.

This post has been edited by piwan: 10 September 2010 - 12:46 AM

[AJCrowley]

piwan, on 10 September 2010 - 12:45 AM, said:

posixninja write it on irc.

More clarification at theiphonewiki.com/wiki/index.php?title=SHAtter

So, it creates a tethered jailbreak for the life of the device, but is still useful as an execution vector for untethered jailbreaks.

[Rocky5]

this is amazing news, time to go get me a iPhone4 from Apple store (unlocked there)

[munaim1]

So what does this mean for 3g users with old bootrom? Because of the fixes on 4.1 for 3g users, i would definetly want this update. I'm sure there will custom firmwares soon so i will be able to keep my unlock with ultrasn0w and keep my baseband at 05.13.04. Could someone share their insight on this matter for 3g user with old bootrom.
Thanks

[AJCrowley]

munaim1, on 10 September 2010 - 02:17 AM, said:

So what does this mean for 3g users with old bootrom? Because of the fixes on 4.1 for 3g users, i would definetly want this update. I'm sure there will custom firmwares soon so i will be able to keep my unlock with ultrasn0w and keep my baseband at 05.13.04. Could someone share their insight on this matter for 3g user with old bootrom.
Thanks

The 3G is already jailbroken for life due to the 24kpwn bootrom exploit, this just gives owners of newer hardware a similar security hole, and has no bearing on your device. You just need to wait for an update of redsn0w or similar to jailbreak 4.1.

[munaim1]

AJCrowley, on 10 September 2010 - 02:23 AM, said:

The 3G is already jailbroken for life due to the 24kpwn bootrom exploit, this just gives owners of newer hardware a similar security hole, and has no bearing on your device. You just need to wait for an update of redsn0w or similar to jailbreak 4.1.

Thanks bro for quick reply. Im still learning so appreciate your reply. Come on redsn0w!!!!