Holiday Gift Guide »

iOS 4 PDF security flaw fixed jailbreak-style for the iPhone and iPod Touch

Categories: Apple, iOS / iPhone OS
By: , IntoMobile
Friday, August 13th, 2010 at 2:34 PM
iphone-4-jailbreak-cydia-mywi-jailbreakme.com_-650x487

Earlier this week, Apple released iOS 4.0.2 which fixed a security vulnerability that enabled the famed JailbreakMe.com website to work its magic on your iPhone or iPad. While fixing a major security hole is normally considered a good thing, Apple dropped the ball by not including the original iPhone or the first generation iPod Touch in this update.

This is not a trivial omission as the iOS 4 flaw allows for arbitrary code execution when an unsuspecting user opens a PDF file or visits a malicious website. Unfortunately, now that the security flaw has been exposed, it will eventually spread beyond the benign JailbreakMe.com website. These adopters of Apple’s early mobile technology, presumably still in use in fairly large numbers, remain potentially vulnerable to this growing attack.

Good thing the iPhone community has the dev team as they have pushed out their own security tool to patch this hole. Now available in Cydia, the PDF Patch tool will fix this security flaw in all iPhone and iPod Touch models and all known firmware versions from 2.x forward. The patch will also work with any current iPhone and iPod Touch versions capable of running iOS 4.0.1. If you are a current gen owner and have not applied the 4.0.2 update, ignore it and apply the patch from Cydia instead. This Cydia-based patch will allow all current gen iOS 4 devices to remain jailbroken and safe from the potential malicious actions permitted by this security hole. Jailbroken and safe: that is the best of both worlds, don’t you think?

[Via the iPhone dev team]

SPONSORED MESSAGE
Get free domestic and international calls and texts to anyone with the Vonage Mobile app available as an iPhone calling app or Android calling app.

About The Author

Kelly Hodgkins

Kelly spent the last three years covering mobile technology at places like BGR, Gizmodo and The Unofficial Apple Weblog. Before writing, she spent a few years working with and teaching others how to use Adobe Flash and Macromedia Director. Even earlier than that, she spent six years working on her Ph.D in Microbiology. When she's not writing, she can be found fishing the lakes and hiking the mountains of Western Maine with her husband and children.

  • mell

    i have upgraded my iphone with 4.0.2 is their any solution to unlock it

  • mell

    i have upgraded my iphone with 4.0.2 is their any solution to unlock it

  • badri

    i up graded my iphone to 4.0.2 and now it got sim locked is ter any solution to fix this plz……….help me

  • Woodstock

    the 4.0.1 is still signing, download the 4.0.1 firmware, in itunes hold shift and click restore, browse to the firmware, and select it, sit back. then restore from back up.

    look on internet for links to get firmware. rename from zip to ipsw – iPhone3,1_4.0.1_8A306_Restore.ipsw
    from iPhone3,1_4.0.1_8A306_Restore.zip

    If Apple is still signing it will be just a normal firmware – downgrade – and then put everything back on.