Apple released iOS 4.0.2 yesterdayand in this version they have only patched large security holes which were exploited by @comex which he used in jailbreakme.com where he injected his jailbreak code through this PDFexploit. Apple has stopped supporting iPhone 2G & iTouch 1G, i.e iOS 4.0.x doesn’t works on these devices. So these devices are very much prone to to truly malicious variants of jailbreakme though these variants aren’t out/reported yet, but there are pretty much chances of hackers using this exploit for wrong intentions.
Saurik is working on a patch which will be available on cydia soon that will fix the holes for all devices and all firmware versions (even going back to version 2.x!). Saurik has also released the deb file. Note this is not the final version. You can download that from here
Post Updated: PDF Patch is now available on cydia.
Here are the steps to install it:
- First copy that com.saurik.iphone.cve-2010-1797_1.0.3244-1_iphoneos-arm.deb to /tmp folder on iPhone /iTouch with the help of iPhoneBrowser or Phoneview or Diskaid
- Launch Mobile Terminal on iPhone/iTouch
- Type su ( default password is alpine)
- Type cd /
- Type cd /tmp
- Type sudo dpkg -i com.saurik.iphone.cve-2010-1797_1.0.3244-1_iphoneos-arm.deb
- Reboot your device.
Install it at your own risk