I have been really busy recently with life, work and everything NOT iPhone. It seems to have pissed a few people off, others sent me SMS/emails messages saying that I had obviously given up on iPhones and unlocking my 3G and I had no time for the blog etc. Well to be honest, I kind of have (had). Thankfully the Dev Team are still working on the iPhone 3G baseband Unlock and here is the latest that they have posted on their blog.
“We’ve been exploring different ideas with the 3G unlock, but this past weekend one of us hit a big snag. For whatever reason, all of our poking and prodding of the 3G baseband caused it to finally have a breakdown. After one specific exploit run, all of a sudden our baseband stopped responding to the OS. Even after multiple restore attempts, we were plagued with errors like this:
Somehow our software hacking had caused the baseband chip’s SPI bus to stop responding (so it looked like a hardware problem). Even though BBUpdaterExtreme reported the correct baseband version, it failed basic tests like memtest:
If you’re familiar with the baseband revision history for the 3G iPhone, you may have noticed that the above captures were done at the original 01.45 baseband. As dire (and hardware-related) as these messages sounded, though, there was a simple solution. We just updated to 01.46 and then downgraded again (because we can run unsigned code on the baseband CPU) to 01.45.
We tried to recreate the problem by using the same exploit over again, but it doesn’t appear to be reproducible (which is actually disappointing, as it might have been exploitable).
Anyway, there you go…a random, technical snapshot of dev team work.”
One readers comments suggests that this may be the method that leads to a 3G baseband unlock if the Dev Team can re-create the error again and are able to upload unassigned code that can execute the unlock.
You guys are geniuses!!! All you have to do at this point to recreate the exploit is to migrate in the reference file ICE2 to the CFI loader. Once you do that, the bootsector is going to change its boot mode from 0xCC to 0xFF. Which of course is going to allow you to send a flash ID to the Protocol configuration sect which ultimately will allow the core kernel to redirect and redistribute the command queue, preventing it from stalling on command 2215. Once all this is accomplished you can then run any unsigned code on the baseband. So there you go guys.
Cmw, creator of WinPwn (great software huh?) updated his site
(http://winpwn.com) yesterday updating us on the status of WinPwn 3.0. He said:
“It’s been very busy for me recently at work and I haven’t had much
time to spend on WinPwn.But i’m hoping that planet/squpid and I can get
the latest version out soon. I will keep you updated!
Here are the new versions of PwnageTool and QuickPwn that support the 2.1 firmware. And as we just mentioned, iTunes was not harmed in the process no patching was required:
PwnageTool 2.1 for Mac OS X via Bittorent - download here
QuickPwn 1.1 for Mac OS X via Bittorrent - download here
That’s right! It seems that there is no modem/baseband update for first gen iPhone who update from 2.0, 2.0.1 or 2.0.2 to 2.1. This means that first gen iPhone owners can update to to 2.1 and their unlocked modem/baseband remains. This is great news if you need the latest bug fixes or like me just like to keep up to date even if it means suffering the consequences of being an early adopter.
What’s the catch this time? Well as always you will loose all third party Apps NOT installed with the AppStore, i.e. anything installed with Installer or Cydia. You will also loose the jailbreak and ability to install third party apps via Cydia or Installer or have file access via AFP or SSH.
The Dev Team are working on a update to PWNAGE that will bring back full read/write capabilites as well as your favorite third party app installers Cydia and Installler. Until then if you dare, enjoy 2.1 the way Apple intended, but unlocked of course.
The Dev Team have since announced that they will be releasing an Update to PWNAGE Tool 2.0.3 sometime soon that will be delivered via the a sparkle update in PWNAGE.
We’ve had some issues with iPod touch devices and the latest version of PwnageTool for the Mac, in certain conditions incorrect permissions will be used and the keychain doesn’t save passwords. So hold on and wait for the next release, we’ll push out the updated version via Sparkle as soon as it is tested (it is being tested right now). We have also encountered some issues with the Windows Beta of QuickPwn, and we have a release candidate here that should fix the issues seen with 64-bit Windows versions and should be able to be used with all versions of Windows, but as with all beta software other bugs may be present. 5 hours ago
There were also some users who reported problems with QuickPWN and the Dev Team have released an updated version called QuickPWN RC2 that should fix these problems.
PwnageTool 2.0.3 is now available either as a update in PWNAGE (courtesy Sparkle) on your Mac or you can download it directly from here. (Dev Team Server Link)
This new version of PwnageTool supports iPhone/iPod firmware 2.0.2 5C1. It also comes with a new updated Installer Beta vb6 and Cydia of course. The application must be downloaded as a .tbz file from the Dev Team Servers (above) and must NOT be decompressed using “the unarchiver”, use OS X’s built in ‘Archive Utility’ to decompress the file.
PWNAGE Tool 2.03 will create a custom iPhone/Touch firmware that you can choose to Jailbreak and Activate your device, install Cydia and/or Installer.app and run BootNeuter to unlock your First Gen iPhone on firmware 2.0.2 build 5C1. Unfortunately it will NOT unlock your/my iPhone 3G baseband, but it will jailbreak it and allow you to run great apps like Cycorder and Winterboard.
Update 2 - I have added some fixes for some errors with cydia and passwords in the forum please check here
Update: I am having problems with passwords being saved for email, wifi and other things. I will try to chenge permissions of var/keychain to 0777 and see if that helps.
The iPhone Dev Team have released an update with a new version of PWNAGE Tool 2.0.3 for iPhone firmware 2.0.2 on iPhones and iPod Touch. This version of PwnageTool 2.0.3 will create a custom iPhone firmware that is unlocked that will be bundled with Cydia and/or Installer for the iPhone. This will NOT unlock the iPhone 3G, it will jailbreak and Activate the iPhone 3G. It will also jailbreak the iPod Touch.
PwnageTool 2.0.3 is now available as a Sparkle update, or a direct download here. This version provides support for iPhone/iPod firmware 2.0.2 5C1, it has an updated Installer.app beta (b6) and contains a new .de localization for our large amount of German friends. The application SHOULD ONLY be downloaded as a .tbz file from our servers and should NOT be decompressed using the very broken application called “the unarchiver” stick to the standard OS X built in ‘Archive Utility’ to decompress. The SHA1 sum of PwnageTool_2.0.3.tbz is 91e670e0c623cd43f5e8cfbfaae6c23d98d8f31b
Also released today is the ‘150’ beta update to the Windows QuickPwn application, this contains a revised GUI from Poorlad that has tighter integration into the the main updated QuickPwn executable and provides fixes for YouTube and provides BootNeuter support for the unlock of 2G iPhones, remember this is still beta software, use at your own risk. The updated tool is available for download here.
NB: QuickPwn Windows doesn’t work well with virtualization as there are some problems with the way USB resets are handled, so we wouldn’t advise trying it, we have had reports of some success with VMWare Fusion 2.0 Beta 2, but this shouldn’t be relied on, use PwnageTool instead, or wait for QuickPwn Mac.
QuickPwn for Mac is being tested right now by a group of testers and we’ll release this when it is ready for public beta (this won’t be within the next 24 hours, but should be within the next week).
There are no significant updates with regard to the 3G baseband unlock, most of us have been busy with real life, when we get any further we’ll let you know.
I received the RebelSims I ordered a few weeks ago today and finally got a chance to test it out. I recorded the entire thing, from putting on the two sided tape to inserting and making a call.
The iPhone Dev Team have released an updated version of their latest iPhone hacking tool for Windows users known as QuickPWN. The new version is still using Poorlad’s GUI. It contains the new bundles for 2.0.2 and also now supports version 2.0 firmware which means you can QuickPwn and jailbreak the device if it is running 2.0, 2.0.1 or 2.0.2. - Sweet!
NB: Using QuickPwn does not update the firmware itself, this tool is designed to ‘Pwn’ (the ability to install future custom non-Apple firmwares) , ‘Jailbreak’ and install Installer or Cydia on a given device. If your device is running 2.0.1 and you QuickPwn it, it’ll still be running 2.0.1, although it will now be Pwned and Jailbroken, similarly if your device is running 2.0.2 and you QuickPwn it, it will then be running 2.0.2 but the device will now be Pwned and Jailbroken. It will also activate (not unlock) devices that are being used outside of their intended territories and cannot be activated using iTunes.
To QuickPwn your device on 2.0.2 on first gen iPhones, simply update your iPhone to 2.0.2 using iTunes and then run QuickPwn. It will jailbreak and activate you iPhone and install either Cydia and/or Installer. It’s still advisable that if you have an iPhone 3G to wait on a new PWNAGE Tool that will not upgrade your baseband as an upgraded baseband may prove to be trouble if ever you wanted to use a software unlock. Mac version of QuickPWN to follow soon
No update on a iPhone 3G unlock - rest assured that they are working hard on one.
Join the forum discussion on this post - (1) Posts
no patching was required:
Update:
Please login to rate.
Do you already have an account? Log in and claim this comment.