Security consultant Stefan Esser is set to unveil a new jailbreak method and utility that fortifies iDevices with ASLR, according to the Register.
Esser will present his new jailbreak process at the Power of Community Security Conference on December 14 in Seoul, South Korea. A new tool called "Antid0te" will simplify the procedure.
ASLR makes your device more resistant to malware attacks by randomizing the memory locations where injected code is executed.
"When you jailbreak it, it breaks a lot of security of a normal iPhone," hacker Charlie Miller told The Reg. "With Stefan's stuff, now maybe it's an option, if you're a security-conscious person, to still jailbreak your phone because you can pick up ASLR, which is going to make it a lot harder to do exploits."
"This enables users with jailbroken iPhones to create their own set of dyld_shared_cache files that have completely different library load addresses from every other iPhone in the world," Esser wrote in an email. "This is already a better ASLR than what exists on Snow Leopard because different applications can use different shared caches and therefore different load addresses."
We'll keep you up to date with more information as it develops...
Read More
Esser will present his new jailbreak process at the Power of Community Security Conference on December 14 in Seoul, South Korea. A new tool called "Antid0te" will simplify the procedure.
ASLR makes your device more resistant to malware attacks by randomizing the memory locations where injected code is executed.
"When you jailbreak it, it breaks a lot of security of a normal iPhone," hacker Charlie Miller told The Reg. "With Stefan's stuff, now maybe it's an option, if you're a security-conscious person, to still jailbreak your phone because you can pick up ASLR, which is going to make it a lot harder to do exploits."
"This enables users with jailbroken iPhones to create their own set of dyld_shared_cache files that have completely different library load addresses from every other iPhone in the world," Esser wrote in an email. "This is already a better ASLR than what exists on Snow Leopard because different applications can use different shared caches and therefore different load addresses."
We'll keep you up to date with more information as it develops...
Read More