∞ JailbreakMe returns, offers jailbreak for iPhone 4 and iPad

Written by

JailbreakMe.com, a website that offers users a way to jailbreak their iPhones, has returned.

Unlike some jailbreaking apps, JailbreakMe.com does not require a third-party app. All you have to do is vist the JailbreakMe.com on your iPhone and follow the onscreen instructions. When it’s done, your phone will be jailbroken.

A list of supported devices has been posted on Redmond Pie and includes all iPhone models:

iPod 1G on 3.1.2
iPod 1G on 3.1.3
iPod 2G on 3.1.2
iPod 2G on 3.1.3
iPod 2G on 4.0
iPod 3G on 3.1.2
iPod 3G on 3.1.3
iPod 3G on 4.0
iPad on 3.2
iPad on 3.2.1
iPhone 3G on 3.1.2
iPhone 3G on 3.1.3
iPhone 3G on 4.0
iPhone 3G on 4.0.1
iPhone 3G[S] on 3.1.2
iPhone 3G[S] on 3.1.3
iPhone 3G[S] on 4.0
iPhone 3G[S] on 4.0.1
iPhone 4 on 4.0
iPhone 4 on 4.0.1

Update: A couple of people wrote in to say that after jailbreaking their iPhones MMS and FaceTime did not work. These two features did not work when the iPhone was restored. 08/01/2010 6:56 pm PT


  • Crazy Joe

    I don’t mean to cast aspersions ( necessarily ) but why would anybody trust a site that purports to be free and safe. How does one guarantee that this jailbreak doesn’t leave behind a backdoor into the phone? In the process of performing the jailbreak, the site could have access to any and all info in the phone. This could allow immediate or subsequent access to most any information or capabilities on the phone. I’m not claiming anything, just asking.

    • Eric

      Yeah, how do we not know these sites are jail bait sites?

    • http://tumblr.punkassjim.com punkassjim

      Good question, but it’s one that also applies to pretty much every jailbreak method ever devised. Somewhere along the way, you’re choosing to trust someone and grant them deeper access to your personal property and information than even *you* have, in order to *gain* that deep access. The same likely holds true for Android utilities that handle similar (“rooting”) tasks for novices.

      In general, over the past couple years, the folks who work on the “iPhone dev team” have earned my trust, at least insofar as they will not publish a jailbreak or unlock with some built-in trojan horse or beacon. Beyond that, I tend to be _slightly less_ skeptical of sites like jailbreakme.com when the dev team vouches for it.

      The original jailbreak for iPhone OS 1.x was also delivered via website exploit, but they made a point of telling people right on the site that not only were they exploiting a security hole to jailbreak you, but they were also CLOSING that security hole in the jailbreak process.

      • Rob

        How many people in that team did you say?
        How do you all know what the other is contributing to the code… I take it you can all see each other’s code contributions…???

        Then there’s actually knowing the people who crack iPhone software… from what I understand nobody actually knows how many are in the ‘team’ nor whom they actually are…

        • http://tumblr.punkassjim.com punkassjim

          I’ll be the first to admit, I don’t know enough about the dev team (and I’m talking specifically about http://blog.iphone-dev.org/ ) for my own comfort. But I’ve made my own assessment of their collective trustworthiness, based on the voluminous amount of content they’ve published, and others have published about them.

          For the most part, I keep my phone jailed and always on AT&T. But at least once a year, I jailbreak just to see the state of the community, check out what’s available, and ultimately re-jail my phone for any number of reasons. But I always use the dev-team tools, because all other available jailbreak methods seem to have had questionable results and/or bugs, and even drama in the community.

    • Relwal

      > This could allow immediate or subsequent access to most any information or capabilities on the phone.

      Ha! Apparently Apple has already allowed that, hence a website that can jailbreak your phone!

  • AdamC

    To those who want to be free – good for you, brave souls.

  • http://ottodestruct.com Otto

    The MMS and Facetime issues have a fix now. If you have the problem, just update Cydia to the latest version and it’ll fix it for you.

    Jailbreakme.com has been corrected as well, so new jailbreaks won’t cause the problem anymore.

  • http://www.iphonerepairs.org.uk martin

    I have decompiled the source code, and this tool in particular is clean, no backdoors
    however someone could easily repurpose this tool for nefarious purposes using the same exploit with different functions or payload

  • justin

    re: the “MMS / FaceTime doesn’t work, and didn’t after a restore”

    it was a permissions issue, there were 3 directories that needed to be changed back to 755 that the jailbreak missed. comex has since updated it. as for it not working after a restore?

    those 3 directories (/var/mobile, /var/mobile/Library, and /var/mobile/Library/Preferences) are all replaced (along with the rest of the OS) when restoring. the only way that MMS/FaceTime could possibly have been affected would be if they restored from backup after restoring the phone.

    also, if those people run the base system update in cydia (which you’re prompted to do when you launch cydia, btw) also fixes it.

    ease up guys, its just a phone.

  • Jim H

    I don’t mind people who do this, but I’m bothered that people haven’t agreed who this one is done. It’s a vulnerability in Adobe Reader, says one, but Charlie Miller says it’s a problem with an Adobe font.

    Maybe this is the other reason that Steve doesn’t like Flash. Adobe is looking like Windows 98 these days.

    • Mehdi

      Apple do not use Adobe’s pdf rendering libraries, they have made their own. Hence, it’s a bug in their implementation of PDF.

      Research before misleading people, will ya

  • HAL9000

    I haven’t heard much about this so maybe it’s just BS, but I would like a clear answer before I jailbreak my iPhone 4.

    I believe there was talk that Apple had developed some kind of software watermark of sorts that would leave proof if you ever hacked the phone so they could void the warranty. Any truth to this? Has anyone verified if this is for sure true or false?

    Appreciate any feedback from those more knowledgable about this than I am.

    • http://tumblr.punkassjim.com punkassjim

      When in doubt, if you see a blog post with a title that ends in a question mark, and pertains to Apple, it’s best to just forget you ever saw it. “Will Apple Remotely Destroy Your Phone Via OTA Updates?”

      I saw these stories (I hesitate to even make that plural, since it was just one story that got parroted all over), and they were always centered around unsubstantiated rumors.

  • justin

    false.

  • justin

    JimH – the only sources to bother asking about this are the dev-team guys. comex, chpwn, musclenerd, etc…. not the internet pundits and bloggers (who frankly, what i’ve seen are a bit, well, really disconnected from things) he found the exploit and wrote the payload. find him on twitter, @comex.

    per @chpwn on twitter:
    “It’s an exploit in the CFF mini language “stack”, not a heap overflow…”
    “The heap overflow “analysis” is fake: Adobe’s PDF renderer is very different than Apple’s. It uses a CFF font stack overflow”
    “Another thing to note is that it isnt limited to PDF files: thats just how JailbreakMe is implemented. It could happen in elsewhere. ”
    “Er, not “fake”, but incorrect.”

    thats going to the source.

    regardless, the issue is the insecurity, but bottom line is, i can have my insanely useful system tweaks, and unapproved apps back. there is _no_reason_ i should not be able to have a native google voice app on my phone. now i do. take that apple.

    • sw0rdfish

      @justin

      Take that Apple? What do they care, they already have your money. *shrug*

      AT&T is probably the #1 reason there is an issue with the Google Voice app. furthermore, app rejections aren’t for users who know what’s going on with a phone, it’s for the majority of users who have no idea what’s happening under-the-hood and then spout off about horrible battery life because they have 50 apps running in the background.

      • justin

        if they didn’t care because they “already had my money” then why would they spend time patching exploits? why not just let the jailbreakers jailbreak, those who don’t, don’t?

        apple rejected it initially stating it “duplicates functionality” and that having 2 phone dialers would confuse users. give me a break.

        • http://tumblr.punkassjim.com punkassjim

          “if they didn’t care because they ‘already had my money’ then why would they spend time patching exploits? why not just let the jailbreakers jailbreak, those who don’t, don’t?”

          I direct your attention to the fact that there has never, in three years of solid, active development, ever been an iOS device that was un-jailbreakable or non-unlockable. You may see this as sloppy coding by Apple, and you may attribute the jailbreak success solely to the ingenuity of the iPhone Dev Team. I don’t think Apple’s that sloppy. Whatever exploits Apple has patched, I’ve always chalked up to “saving face” with their carrier partners. If they didn’t “crack down” on this stuff, at least in some convincing way, AT&T and all the other carriers throughout the world would have reason to change the terms of their agreements, and Apple would lose much more money than they do by occasionally tripping the jailbreakers.

  • Victim

    This is a virus!!!!!!! It stole all my information!!

    • Xfiles-Scully

      Check out if the aliens didn’t took it away…
      If you’re not sure to use it, just don’t do it. Almost all the “jailbreaking” processes have a turn back method, restore it!

  • kzooguy

    I’ve been having some fun looking at the code and trying to de-obfuscate it. Cool stuff.

    Basically, it figures out exactly which version iProduct you have through a combination of parsing the UserAgent string and running javascript profilers to detect processor speed, then creates an invisible iframe pointed at a special PDF. I’d be interested to learn how the PDF-crafting works, maybe I can download one and take a look in a hex editor/etc. Gotta learn more about the PDF format first, though. I don’t think you could really blame this on Adobe. Apple loves PDFs and uses them everywhere in their graphics libraries; they definitely have their own PDF renderer. I wonder if this exploit takes advantage of some code that was secure enough when written for x86, but when ported to ARM, lost something in translation? If this exploit could be traced back to Apple’s ARM Obj-C compiler, that’s bad news. I think it’s more likely something in the PDF code, which makes me wonder whether there’s a similar problem for Macs.

  • http://www.ipod-to-mac.com/ karrysony

    I should have a try then I will know this software well

  • Max

    When will you put up the 4.02 version

  • http://iconreproductions.com Bill Thomson

    Had no problems getting my Iphone jailbroken. Now just need how to get killer apps installed for free. Any ideas?

  • $.$

    It stole my image,song,apps!!
    DO NOT INSTALL!
    WARNINGGGGGGG!!!!!!!