In today's video, we're discussing the release of an enhanced version of the powend exploit. Tihmstar, a security researcher in our community known for a slew of kernel exploits like v3ntex and for a series of co-developed jailbreaks such as H3lix, DoubleH3lix, and EtasonJB, has posted a new version of the 2 months old powerd exploit which is a sandbox escape to root exploit initially posted by 0x36 on GitHub. Tihmstar's modifications add libtakeover which allows the developers to call arbitrary functions as well as read / write / allocate memory in powerd.
While a sandbox escape / root privilege escalation is not all it takes for a full-fledged jailbreak, being able to do this is definitely a powerful tool for any developer interested in developing jailbreaks. Unfortunately, this bug was patched in iOS 12.2 so only people on iOS 12.1.4 and iOS 12.1.3 can use it. Tihmstar has also added Ned Williamson's PoC for kernel panicking. While not extremely useful, it does allow one to look for even more powerful bugs.
For the people on iOS 12.2, there are already great tools available thanks to @DanyL931 who released his Lockdown Playground project the other day which allows a developer to run interesting commands in order to find more bugs outside the sandbox container. Do not forget to subscribe to stay updated with the latest #iOS and #Jailbreak news!
▽ Resources ▽
▶ iOS 12.2 / 12.1.4 / 12.1.3 JAILBREAK NEWS: NEW EXPLOITS AND TOOLS RELEASED!
▶ iOS 12.2 / 12.1.4 / 12.1.3 JAILBREAK NEWS: NEW Kernel PoC RELEASED
▶ iOS 12.2 / 12.1.4 / 12.1.3 JAILBREAK GOOD NEWS | NEW EXPLOITS TO COME
▶ How to Install Unc0ver and Chimera JAILBREAK WITHOUT COMPUTER (NO PC) iOS 12.0 – 12.1.2