Vulnerability in SecureROM | |
---|---|
Software |
|
Vulnerable in | ? |
Fixed in | Not fixed |
Disclosed | 16 December 2024[2] |
Discovered by | gsch |
S5Late is a BootROM exploit for late iPod models. It is currently confirmed to exploit iPod nano 6th and 7th generation, and iPod shuffle (4th generation).
The vulnerability is in DFU mode packet parsing code, specifically for the DFU_DNLOAD
command. The bounds of a user-supplied buffer is not checked, allowing it to overwrite executable memory in SRAM.[2]
External Links
- S5Late on GitHub