DIY cable to build better iOS exploits

Powered by SC Magazine
 

Serial port gives access to a dormant kernel debugger.

An Aussie network engineer has developed a serial cable connector that can give access to a secret kernel debugger hidden within Apple iOS.

The debugger revealed by researcher Stefan Esser at the Black Hat conference last week was a dormant iOS function in Apple iPhones and iPads, carried over from Apple OS.

Esser told The Register that the debugger slashed exploit development time because it gave control over the operating system when it crashes, including read/write access to memory and the registeries.

Brisbane-based network adminstrator Chris Pollock has designed a serial connector capable of accessing the system, and has published the blueprints and photos on his blog.

He developed the system, which relies on a jailbroken device, to allow engineers to use the hidden serial port in Apple devices such as iPads and iPhones so they could be used in place of laptops in data centres.

US-based RedPark offers a similar system that does not require a jailbreak, but Pollock said it would not grant access to the debugger.

 

"There are limitations because the cable is powered by the serial," Pollock said. "It requires  external power."

Without external power, the serial port will not access the debugger.

Pollock's blueprints have been updated to show how his serial cable can be booted with a 3.3v external power source.

He had begun to further develop the devices but ceased once the RedPark cable, previously stalled from production for months, was accepted by Apple.

Copyright © SC Magazine, Australia


DIY cable to build better iOS exploits
Tags
 
 
 
Top Stories
First look: Microsoft Outlook for iOS
[Update] Office productivity suite for iOS completed with Outlook.
 
NewSat defaults on $26m in overdue Lockheed payments
Jabiru-1 satellite build hits further hurdles.
 
IBM denies plans to cut 112k jobs
But admits to further restructuring.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Who do you trust most to protect your private data?







   |   View results
Your bank
  36%
 
Your insurance company
  5%
 
A technology company (Google, Facebook et al)
  9%
 
Your telco, ISP or utility
  8%
 
A retailer (Coles, Woolworths et al)
  4%
 
A Federal Government agency (ATO, Centrelink etc)
  18%
 
An Australian law enforcement agency (AFP, ASIO et al)
  14%
 
A State Government agency (Health dept, etc)
  7%
TOTAL VOTES: 3093

Vote
Do you support the abolition of the Office of the Information Commissioner?

   |   View results
I support shutting down the OAIC.
  27%
 
I DON'T support shutting the OAIC.
  73%
TOTAL VOTES: 986

Vote