Protect Your iPhone, iPod touch and iPad from the PDF Exploit vulnerability without Updating your iDevice to iOS 4.0.2 / 3.2.2
As you all know, yesterday Apple has released the new 4.0.2 Firmwares for iPhones and iPod Touch Devices and the new 3.2.2 Firmware for iPads to block / patch the PDF exploit that was use by comex for the JailbreakMe.com userland jailbreak.
Since this “PDF” exploit is highly vulnerable, Apple recommended everyone to update to this new firmwares for iPhones, iPads and iPod Touch devices in order to secure all iOS based devices. Of course by doing so you will lose your Jailbreak and Unlock after the iDevice is updated to the new firmware.
The iPhone Dev-Team has released the PDF Patch to fix the iOS vulnerability used by comex’s jailbreak.
On Wednesday, Apple (finally) released firmware 4.0.2, which patches the very large security holes exploited by @comex in the 2nd incarnation of jailbreakme.com. The only problem is they outright abandoned iPhone2G and iPod Touch 1G users! Even though Apple acknowledges in their security update the severity of these holes, they left iPhone2G and ipt1G owners high and dry — completely vulnerable to truly malicious variants of jailbreakme (these variants aren’t out yet, but they’re sure to come!).
Luckily for Apple, the Jailbreak community isn’t so callous. @saurik has been burning the midnight oil coding a Cydia package that will fix the holes for all devices and all firmware versions (even going back to version 2.x!).
Since the only reason for 4.0.2 was to fix the security holes, and since the upcoming Cydia package will fix them too (and then some!), everybody should sit tight on 4.0.1 (or lower) and install the Cydia package as soon as it’s out. Jailbreakers can have their cake and eat it too.
The fix is installable via Cydia itself now all you have to do is search for “PDF Patch” while in Cydia.
To test that it’s working properly, visit jailbreakme.com again. After you slide to jailbreak, you should no longer see a dialog box pop up (you’ll just see the star background). That means you’re no longer vulnerable!