De Rebus Antiquis
Vulnerability in iBoot second-stage loader
Vulnerable versions	? - 1940.10.58~132
Disclosed	10 May 2018
Discovered by	xerub

De Rebus Antiquis (DRA) is an exploit in the iBoot of iOS 7 that abuses a recursive stack overflow bug. It can be set up to run untethered by creating an HFS partition containing the exploit code and setting the device's NVRAM to read it on boot. With the proper tools, this can be used to achieve untethered downgrades and jailbreaks on any 32-bit device you have iOS 7.x SHSH blobs saved for. This is especially useful on the iPhone 4. It is not available on 64-bit devices and was patched in iOS 8.

External links[edit]

Analysis

v t e Exploits
Exploits	0x24000 Segment Overflow ARM Exception Vector Info Leak ARM7 Go alloc8 Exploit amfid Lazy Binding Exploit amfid Text Relocation Exploit BPF_STX Kernel Write Exploit blackbird Exploit CVE-2013-0964 CVE-2021-30773 CVE-2021-30807 CVE-2021-30883 checkm8 Exploit CoreTrust Root Certificate Validation Vulnerability De Rebus Antiquis diags (iBoot command) Dual Boot Exploit Dynamic memmove() locating HFS Heap Overflow HFS Legacy Volume Name Stack Buffer Overflow iOS 5 HFS Heap Buffer Overflow IOSurface Kernel Exploit IOUSBDeviceFamily Vulnerability Incomplete Codesign Exploit iran Kernel memory write via ROP gadget libTiff Exploit limera1n Exploit MacDirtyCow Malformed CFF Vulnerability Malformed PairRequest MobileBackup Copy Exploit Overlapping Segment Attack Packet Filter Kernel Exploit posix_spawn kernel information leak Psychic Paper Pwnage Pwnage 2.0 Racoon String Format Overflow Exploit Ramdisk Hack SHA-1 Image Segment Overflow Shebang Trick Symbolic Link Vulnerability T1 Font Integer Overflow Timezone Vulnerability usb_control_msg(0x21, 2) Exploit usb_control_msg(0xA1, 1) Exploit v0rtex vm_map_copy_t corruption for arbitrary memory disclosure
Patches	/private/etc/fstab AMFI Binary Trust Cache Patch ASR Crazeles hgsp4 patch Hunnypot Kernel Patches PE_i_can_has_debugger Patch Sandbox Patch Signature Check Patch vm_map_enter Patch vm_map_protect Patch

This exploit article is a stub. Please add more content to this article and remove this tag.

See also[edit]

External links[edit]