Well for all those who were interested in how we did it. Here is the source code for our exploit ( see below). I won’t go into to much detail since metasploit already did.
This will work on iTouch/iPhone firmware 1.0.2 and 1.1.1.
If you have any questions or comments please feel free to email me chrisw (at) toc2rta.com
So its offical we have released the tiff exploit code. You can navigate in safari to http://jailbreak.toc2rta.com on your Itouch or Iphone 1.1.1. It will crash your Safari but then you will be able to browse the file system with full read/write access. This is only for people who understand what they are doing. You will need IPHUC and some knowledge of how to put/get files.
TUTORIAL FOR WINDOWS
Just a small update – if you want to downgrade your iPhone from 1.1.1 back to 1.0.2, iBrickr will guide you through it. No button holding either, it’s easy!
Check it out!
So in an attempt to figure out what was bricking unlocked phones on 1.1.1, I upgraded my unlocked phone to 1.1.1. After a number of (shall we say) valiant attempts at reviving the radio, I managed to brick it even further, by somehow completely breaking the radio. I have this fun message as shown on my phone, and nothing (not CommCenter, not bbupdater, not iEraser, nor NORDumper) can communicate with the baseband on the phone. All restores fail because they can’t talk to it.
So it looks like if I want to continue testing with 1.1.1 I’m going to have to replace the radio board on my phone with a new one.
If anyone here has an iPhone with a cracked screen or some other non-radio problem (dead battery, etc) just laying around, I could definitely use it. I’ll send you an assembled Time Fountain for it, if you’d like.