iOS 4.3.1 Untethered Jailbreak Demo’d by @i0n1c [Video]

Stefan Esser, aka @i0n1c demonstrated an untethered iOS 4.3 jailbreak earlier on his iPad. Today, he uploaded a video showing an untethered iOS 4.3.1 jailbreak on his iPod touch 4G, accomplished via sn0wbreeze 2.4. @i0n1c used sn0wbreeze for the tethered jailbreak, then installed his untether exploit via SSH.

It was very unlikely that Apple also fixed the kernel vulnerability I used for my untether exploit. Mainly because the kernelcache binary is about 8-10 MB in size and the likelihood that Apple finds the same vulnerability in that short amount of time was very low.

Stefan was successful in proving Apple did not find his vulnerability, as shown in the video below:

…and just to set the record straight, Stefan has the following to say:

Because several people misunderstood me in the past:

a. I repeatedly stated that I will not release a jailbreak tool – I will only give out the untether. I did not try yet, but if it is feasible the untether could be a cydia package.

b. While the vulnerability I use is in the iPad 2 kernel my untether will NOT SUPPORT the iPad 2, because there is no way to install it there (bootrom exploits fixed). – however Comex is working on that part.

c. I am not giving out any ETA again, because the Jailbreak community is simply nuts. Last time I gave an ETA and even before that had passed I got constantly insulted by people that were demanding an immediate release. Sorry guys the more you insult people with the knowledge to actually do what YOU WANT the less motivation there is to use our free time to give it to you.

d. The only reason why I did not finish the untether before the ETA was due to unexpected work overload in my real job. It had nothing todo with the untether being too hard or unreal.

e. I don’t know why the dev team has not released a redsn0w that does tethered jailbreak for 4.3.1 – I would prefer that to be available, cause sn0wbreeze obviously does not work 100% yet.

f. If you want to learn more about iPhone kernel hacking/exploitation you should come to SyScan Singapore at the end of April.

Kudos to Stefan for his untether exploit, and for those expecting an untethered iOS 4.3.1 release, you’ll have to continue to patiently wait.

[@i0n1c]