In today's video, we're talking about Google Project Zero's latest release, a WebKit vulnerability that can be exploited to gain arbitrary code execution in #WebKit. A pretty good vulnerability which if paired with a Kernel exploit can lead to a Jailbreak-Me style jailbreak on #iOS 12.1 and lower. The vulnerability has been assigned the number CVE-2018-4441 and it has been patched on Apple devices in iOS 12.1.1, therefore making it compatible with iOS 12.1 all the way down to iOS 12.0 and possibly iOS 11.4.1 as well.
While this is not a kernel vulnerability, it is still important and useful. One reason is that a #Jailbreak-Me style jailbreak based on such vulnerability doesn't require signing every 7 days or installation from a 3rd-party App Store like AppValley or Ignition. Such Jailbreaks can easily be triggered from #Safari by accessing a web page and pressing the Jailbreak button. Of course, this still needs a kernel vulnerability. The WebKit bug represents only the entry point.
▽ Resources ▽
▶ SILEO REAL CYDIA ALTERNATIVE RELEASED (It's quite good!) [COMPLETE REVIEW]
▶ iOS 12.1.2 / 12.0 JAILBREAK NEWS: NEW KERNEL VULN RELEASED!
▶ iOS 12.1 / iOS 12 JAILBREAK AND DUAL BOOT (64-Bit) WAS ACHIEVED
▶ iOS 12.1 / 11.4.1 JAILBREAK STATUS | Unc0ver v2.1.0 PRE-RELEASE | IS CYDIA BEING CLOSED?