An exploit is available in iOS 5's iBoot that abuses a heap buffer overflow bug. The exploit was discovered by p0sixninja.
The exploit has been shown to be able to untethered verbose boot the original iPad.
Support for untethered downgrades on the iPod touch (3rd generation) via this exploit is planned in powdersn0w [Archived 2022-07-20 at the Wayback Machine].
The exploit should also be available in iOS 4 or earlier. It was patched in iOS 6.
See also[edit]
- De Rebus Antiquis, another iBoot exploit with similar uses