Interview With Stefan Esser (i0n1c) The One Who Found Untethered iOS 4.3.1 Jailbreak Exploit


by casey on April 6, 2011

Untethered iOS 4.3.1 jailbreak for iPhone iPad and iPod Touch is already out there. Most of you are enjoying a jailbroken device now. We have already covered all news and how to guide which includesRedsn0w 0.9.6 RC9,PwnageTool 4.3 orSn0wbreeze 2.5 and Seas0nPass 4.3.1.If you are unaware, all these tools released by iPhone Dev Team and other hackers uses one exploit originally found by Stefan Esser known as @i0n1c on Twitter. So a big thank you to the real hero behind untethered iOS 4.3.1 jailbreak. An Italian website has taken an interview of Stefan Esser which you can read below.

1) How has “met” Apple for the first time?
You mean in the true sense of the word? Because in 2008 I went to lunch with some of Apple’s security team in their amazing campus in Cupertino, and the pizza we ate was delicious!
In the other direction instead, can not remember when I bought my iBook.

However I have only ever used to play around ‘with the PPC platform.
I started working with Apple products in 2007, when my company gave me a MacBook.

2) When you become a hacker? What was the very first exploits you found?
Between 1998 and 1999.
I do not remember what was the first vulnerability that I found: however, one of the first vulnerability discovered that struck me was the media remote code execution vulnerability in all default installations of PHP

3) Today, a famous hacker is not so simple could share his experience?
“Become Famous” is an excuse to throw hacking wrong: if you want to be famous you should make a video where you sing / rap and you put it on youtube (though in retrospect not a bad idea …).
I penetrated hacking / security research because I love solving puzzles.
It is true that it is puzzling that IT security has become more difficult over the past 10 years, but has also become very funny.
However, as the puzzles of real life, the vulnerability scan can sometimes be boring, we need a lot of patience and at the end of the day if you feel that you have missed a piece of the puzzle from the beginning, you should not hang, and you should not do so even if you have solved the puzzle wrong.
We must realize that you have to practice your skills, start with small puzzles and then work until you manage to solve the most difficult.
At that point, you will be recognized by other hackers and become known.
Obviously, the focus on issues that others do not deal helps, but is not
ensured an easy victory.

4) with IOS 4.3, Apple introduced the protocol ASLR, which has trouble finding
untethered for an exploit to jailbreak: how he managed to “break”?
I used a trick that involves a little known feature of OS X binaries to bypass the protection dell’ASLR.
That said, I can say that no ASLR has been a challenge to exploit the untethered.
The biggest challenge was the fact that Apple has removed the variants of the system from iOS 4.3.
In previous jailbreak, the “return-oriented programming” (ROP) err used to disable some security functions through these variations, in order to allow the execution of another binary code, which exploits the kernel.
Mainly it means that the process of ROP hijack the execution of a process through the redirect code snippets already in memory.
Managing to combine the right pieces of code can do anything.
So in the previous jailbreak only served to create the knowledge bases ROP payload.
But now all the exploits of the kernel must be mounted using this code snippet: a lot harder than before.

5) Why do you think one should do the jailbreak?
I try to do the jailbreak because it is necessary to do a real study on the safety of the iPhone.
Rarely use something from Cydia, except system tools and sometimes I buy the app from the App Store, but I’m sure he knows that Apple
However for some people jailbrekkato is the only way to make the iPhone what you want.

6) recently found an exploit for 4.3.1 iOS: it was difficult?
Not really, because in this case I was simply looking for a specific configuration (most of the work had been completed months ago when I began to dig in the security of the iPhone).

7) In a recent tweet, talked about some problems with Wi-Fi could explain these problems?
I believe that there is no need to concern yourselves with this: it seems that iOS 4.3 (.1) has just changed something in Wi-Fi driver that caused problems with some routers.
Sometimes these problems disappear by simply rebooting the router, but tests have shown that this problem is not related to Jailbreak.


We cover all jailbreak and unlock news. Proof is our homepage Make sure you follow us.

Follow us on TWITTER or Like Facebook Page to stay connected to get daily Internet News.

We Write Very Rite

Previous post:

Next post: