Mac OS X Security Update 2010-005 (Fixes PDF Vulnerability)
Apple has released security update 2010-005 for Mac OS X 10.5.8 and 10.6.4 which patches a number of issues, including the same PDF vulnerability used by jailbreakme (recently patched in iOS):
A stack buffer overlow exists in Apple Type Services’ handling of embedded fonts. Viewing or downloading a document containing a maliciously crafted embedded font may lead to arbitrary code execution. This issue is addressed through improved bounds checking.
Go off and patch! Full update details after the jump. Read more
ultrasn0w Carrier Unlock for iPhone 4
Riding the wave of JailbreakMe in the past couple days, the ultrasn0w project has been updated to enable a full carrier unlock for iPhone 4 running baseband version 01.59. This release also supports unlocking iPhone 3G and iPhone 3GS running basebands 04.26.08, 05.11.07 and 05.13.04.
The unlocking process requires a jailbroken iPhone, a process recently simplified by the browser-based process of jailbreakme.com which used a PDF font engine exploit to jailbreak the device. The ultrasn0w tool can be found within the Cydia application repository that is installed as part of the jailbreak. The unlock will now allow iPhone 4 devices to be used on any carrier.
David Wong (aka. planetbeing) from the iPhone Dev Team posted about the news on their blog. The video below by TechTechManTV shows an iPhone 4 being jailbroken and unlocked using jailbreakme.com and ultrasn0w:
Loading ...
