![iOS 10.3.2 Userland Exploit Released [Video]](/images/news/61800/297121/297121-64.png "iOS 10.3.2 Userland Exploit Released [Video]")
Security researcher Ian Beer has released a userland exploit for iOS 10.3.2. The exploit allows you to access the task pool for any process on the iPhone apart from the kernel.
---
This is an exploit for CVE-2017-7047, a logic error in libxpc which allowed malicious message senders to send xpc_data objects that were backed by shared memory. Consumers of xpc messages did not seem to expect that the backing buffers of pc_data objects could be modified by the sender whilst being processed by the receiver.
This project exploits CVE-2017-7047 to build a proof-of-concept remote lldb debug server stub capable of attaching to and allowing the remote debugging all userspace processes on iOS 10.0 to 10.3.2.
---
In the video below, Billy Ellis explains how to use the triple_fetch tool released by Beer.
"Currently this project only allows you to mess with user land processes such as backboardd, launchd, SpringBoard, etc & is DOES NOT provide a method of fully jailbreaking & patching the kernel and installing Cydia and other jailbroken packages onto the device."
Jonathan Levin, author of macOS and iOS Internals, recently said that the exploit can be adapted to a jailbreak. We'll let you know if that happens. If you are interested in jailbreaking, we'd advise you downgrade to iOS 10.3.2 before the signing window closes.
Please follow iClarified on Twitter, Facebook, or RSS for updates.
Take a look at the video below!
---
This is an exploit for CVE-2017-7047, a logic error in libxpc which allowed malicious message senders to send xpc_data objects that were backed by shared memory. Consumers of xpc messages did not seem to expect that the backing buffers of pc_data objects could be modified by the sender whilst being processed by the receiver.
This project exploits CVE-2017-7047 to build a proof-of-concept remote lldb debug server stub capable of attaching to and allowing the remote debugging all userspace processes on iOS 10.0 to 10.3.2.
---
In the video below, Billy Ellis explains how to use the triple_fetch tool released by Beer.
"Currently this project only allows you to mess with user land processes such as backboardd, launchd, SpringBoard, etc & is DOES NOT provide a method of fully jailbreaking & patching the kernel and installing Cydia and other jailbroken packages onto the device."
Jonathan Levin, author of macOS and iOS Internals, recently said that the exploit can be adapted to a jailbreak. We'll let you know if that happens. If you are interested in jailbreaking, we'd advise you downgrade to iOS 10.3.2 before the signing window closes.
Please follow iClarified on Twitter, Facebook, or RSS for updates.
Take a look at the video below!
![Apple's Foldable iPhone Could Feature a Highly Modular, Easy-to-Repair Design [Rumor]](/images/news/100780/100780/100780-160.jpg "Apple's Foldable iPhone Could Feature a Highly Modular, Easy-to-Repair Design [Rumor]")
![Apple 14-inch M5 Pro MacBook Pro Hits New All-Time Low at $1,983.94 [Deal]](/images/news/100736/100736/100736-160.jpg "Apple 14-inch M5 Pro MacBook Pro Hits New All-Time Low at $1,983.94 [Deal]")
![13-Inch M5 MacBook Air Drops to $949.99 on Amazon [Deal]](/images/news/100667/100667/100667-160.jpg "13-Inch M5 MacBook Air Drops to $949.99 on Amazon [Deal]")
![AirPods Pro 3 Drop Back to $199.99 on Amazon ($50 Off) [Deal]](/images/news/100545/100545/100545-160.jpg "AirPods Pro 3 Drop Back to $199.99 on Amazon ($50 Off) [Deal]")
![13-inch MacBook Air M5 Drops to $949 in New All-Time Low [Deal]](/images/news/100466/100466/100466-160.jpg "13-inch MacBook Air M5 Drops to $949 in New All-Time Low [Deal]")
