You read that right! Yesterday I mentioned that the PoC verification code is about to be made public, and not long after I finished speaking, the author has already arranged for the release, which is extremely efficient, if you still have hope for this vulnerability for trolls or jailbreaks, please put away your hopes, this article tells you that there is not much hope.
After the official release of iOS 17.5, it can be seen from the security content that a total of 15 vulnerabilities have been fixed in this system, including one CVE-2024-27804 vulnerability, the PoC code is about to be released, pay attention! To put it bluntly, this is just a public PoC verification code, but it is not a complete vulnerability.
In other words, after the PoC verification code is made public, it is still necessary for the great god to follow this idea to find reliable use, obviously! At present, there are many PoC codes that have been made public, and according to the previous disclosure, we still can't find reliable use, and this time is no exception, so ! opa334 Okami thinks that the probability is 10%.
As you can see from the chart above, the opa334 god believes that 90% will not produce any exploitable results, and 10% may be expected to get the iOS 17.0 trollstore troll installation method, but it is absolutely impossible to work on iOS 17.0 SPTM devices.
On the afternoon of May 14th, Meysam officially released the PoC verification code, which can be tested and verified on iOS 17.4.1 and lower systems. Verify that the system will not crash, and if it crashes, it means that the verification is effective.
Subsequently! opa334 The Great God looked at it and decided that it was up to 90% of the time and would not yield any useful value.
Let's start with an assumption about the PoC code for this CVE-2024-27804 vulnerability, assuming that someone does find a way to exploit it, it means that iOS 17.0 troll installation is promising, but there is no hope for iOS 17.0 jailbreaking, and more is still needed to complete.
Corresponding to iOS 17.0.1 to 17.4.1 trolls, this must be 100% hopeless, this time mentioning the vulnerability is not a signature wrapping vulnerability, how can it be possible to support trolls! For the iOS 17.0 system, people themselves support trolls, but they lack an installation method, and only need a kernel read and write vulnerability, which is different.
Then! Some people must ask, these jailbreak gods or other developers, can they conduct in-depth research, to put it mildly, mining vulnerabilities and jailbreaking are not at the same level, if the jailbreak gods will dig vulnerabilities, people will definitely not develop jailbreaks, after all, mining vulnerabilities can make money! Famous, rich, and even a very good job.
Unless you say! The god who excavated the loopholes revealed that he provided some ideas for these vulnerabilities, and let the jailbreak god or other participants explore it together, which means that there is hope for this matter, so the opa334 god thinks that there is a 10% chance that it is available for this matter, referring to this reason.
-- Straight to the point --
This public PoC verification, the following possibilities:
- iOS 17.0 Troll Install Likely: 10%
- iOS 17.0.1 to 17.4.1 Troll Likelihood0%
- iOS 17.0 Jailbreak Likelihood0%
- iOS 17.0 to 17.4.1 No Jailbreak Modification Possibility 10%
Note! PoC is just verification, but it's useless, just give other gods an idea to see if they can find a way to use it, and it is not excluded that there are masters, so give 10% possibility, which is not too much.
That's probably it, anyway! Do you guys think the iOS 17.0 troll installation method is promising? Please comment.