Apple has moved swiftly to patch the multiple security flaws that reportedly allow a drive-by jailbreak on the iPhone and iPad. However, some reports now suggest that other flaws are waiting to be tapped for jailbreaking
Infosecurity.Com - Apple's problem, Infosecurity notes, is that there is army of software developers making a living from jailbreaking – unlatching the iPhone and cellular-enabled iPad from the mobile network that has subsidized the device.
And because of this, as each new version of the iOS operating system is released, it is pored over for jailbreaking flaws, which are then exploited.
Furthermore, as each jailbreak-enabling exploit is patched, others are revealed by astute programmers working steadily to reverse engineer the Apple mobile operating system.
According to the ZDNet newswire, the flaws – when exploited by the Jailbreakme.com project – allow remote code execution attacks via specially rigged fonts and escalation of privileges to escape the iOS memory sandbox.
The Jailbreakme.com project, notes the newswire, used rigged PDF files to deliver the malformed fonts.
Weekend security postings, meanwhile, have confirmed that other potential flaws are being worked upon to allow further jailbreaking procedures, although the processes involved are much more complex. More
