Lately, Apple hacker Linus Henze made WebKit RegEx Exploit, a 0-day exploit for iOS 12.1 and below, public. Please note that the bug which this exploit utilizes is fixed by Apple in the latest version of the WebKit Engine. But, this exploit still works in the latest version of mobile Safari. According to Linus Henze, all iterations of iOS 12 are vulnerable to this exploit. This WebKit Regex Exploit also works on iOS 12.1.1. However, since iOS doesn’t support shellcode loading out-of-the-box, the exploit has got no use. But, the silver lining is that Linus is pretty confident of developing shellcode loading into iOS at a later period of time.
UnC0ver Jailbreak V 2.0.0 with Cydia Substrate support is out. Click here to know more.
With the public release of this exploit, there is another good news for the jailbreak community who are eagerly waiting for a modern jailbreak to be released in the public. As of now, only security researchers are able to implement jailbreak in the latest iOS operating system. However, Alibaba’s Min Zheng has commented that this exploit by Linus can be utilized for the development of a modern remote jailbreak.
Contents
Is iOS 12.1 Public Jailbreak Tool in the Pipeline?
Min Zheng works in a cybersecurity role with the prime focus on mobile platforms for Alibaba and is an exceedingly well-known and respected individual in the community. In fact, he himself has discovered multiple iOS exploits. Hence, when a person of his level of expertise has spoken that a remote jailbreak can be developed from Linus’ exploit, it, definitely, spreads a wave of happiness all across the jailbreak community.
Did you know that iOS 12.1 is successfully jailbroken on iPhone XS Max by Keen Labs? Click here to know more.
For those who are unfamiliar with the term of remote jailbreak, please note that an RJB or a remote jailbreak is the one which can be utilized to hack a device over the air through the Safari browser. If you are interested in a jailbreak, it will be wise to keep yourself away from installing iOS 12.1.1. If you have already upgraded to iOS 12.1.1, it is still not too late to downgrade back to iOS 12.1 as Apple is still signing the firmware. However, you need to be quick as Apple is pretty quick nowadays to stop signing the previous firmware.
WebKit RegEx Exploit – Remote Jailbreak iOS 12/12.1
If you are still on iOS 11.4 as of now, upgrade to iOS 12.1. Please note that the first beta of iOS 12.1.2 might go into public anytime during the next week. Hence, Apple may stop signing iOS 12.1 on that date. Stay tuned with us for more updates. We will let you know immediately if something more positive develops in the situation.
Please check the following interesting posts as well: