Forgot your password?
typodupeerror
Security

Two Unpatched Flaws Show Up In Apple iOS 171

Posted by samzenpus
from the rotten-apple dept.
Trailrunner7 writes "The technique that the Jailbreakme.com Web site is using to bypass the iPhone's security mechanisms and enable users to run unapproved apps on their phones involves exploiting two separate vulnerabilities. One of the vulnerabilities is a memory-corruption flaw that affects the way that Apple's mobile devices, including the iPad and iPod Touch, display PDFs. The second weakness is a problem in the Apple iOS kernel that gives an attacker higher privileges once his code is on a targeted device, enabling him to break out of the iOS sandbox. The combination of the two vulnerabilities — both of which are unpatched at the moment — gives an attacker the ability to run remote code on the device and evade the security protections on the iPhone, iPad or iPod Touch. The technique became public earlier this week when the Jailbreakme.com site began hosting a set of specially crafted PDF files designed to help users jailbreak their Apple devices and load apps other than the ones approved by Apple and offered in its official App Store."
Cellphones

Browser-Based Jailbreak For iPhone 4 Released 154

Posted by CmdrTaco
from the oh-yeah-totally-secure dept.
WrongSizeGlass writes "Apple Insider is reporting on a browser-based 'jailbreak' for iPhone 4. Hackers on Sunday released the first 'jailbreak' for the iPhone 4, a browser-based exploit that allows users to run unauthorized code. Unlike previous jailbreaks, which required users to run software on their Mac or PC and tether their iPhone to their computer, the latest hack is done entirely within the Safari browser. Users simply visit the URL to begin the process, which modifies the iOS mobile operating system found on the iPhone, iPod touch and iPad. Some users have reported that the modification results in broken MMS and FaceTime functionality. This jailbreak does not work on iPads running iOS 3.2.1. "
Games

+ - Blizzard Claims Ownership of All Starcraft II Maps 5

Submitted by ccherlin
ccherlin (190007) writes "The EULA of Starcraft II contains an extremely disturbing clause:

3. Map Editor. The Game includes a program that allows you to create custom levels, maps, scenarios
or other materials for use in connection with the Game (the “Map Editor”). The following terms are specific to the Map Editor:
a. Map Content. You understand that the content required to create or modify STARCRAFT® II
Modified Maps (as defined below) is included in the STARCRAFT® II game client, and that all
such content is owned by Blizzard and governed by this Agreement. YOU ACKNOWLEDGE AND
AGREE THAT ALL MAPS, LEVELS AND OTHER CONTENT CREATED OR MODIFIED USING THE MAP
EDITOR (COLLECTIVELY, “MODIFIED MAPS”) ARE AND SHALL REMAIN THE SOLE AND EXCLUSIVE
PROPERTY OF BLIZZARD. WITHOUT LIMITING THE FOREGOING, YOU HERE BY ASSIGN TO
BLIZZARD ALL OF YOUR RIGHTS, TITLE AND INTEREST IN AND TO ALL MODIFIED MAPS, AND
AGREE THAT YOU WILL EXECUTE FUTURE ASSIGNMENTS PROMPTLY UPON RECEIVING SUCH
A REQUEST FROM BLIZZARD.

Prior Blizzard games like Warcraft III had EULA provisions that prohibited selling maps created with their editor, but the copyright remained with the map maker. Now? Anyone who creates a new, popular mod like DotA with the Starcraft II editor will have no rights to their own creation."
Cellphones

Droid X Gets Rooted 97

Posted by Soulskill
from the root-root-root-for-the-home-team dept.
An anonymous reader writes "The Droid X forums have posted a procedure to root the new Motorola Droid X, putting to rest Andoid fans' fears that they would never gain access to the device's secrets due to a reported eFuse that would brick the phone if certain boot files were tampered with. Rooting the phone is the first step in gaining complete control over the device."
Graphics

Lightweight C++ Library For SVG On Windows? 130

Posted by timothy
from the put-a-choke-on-your-tla-dectector dept.
redblue writes "I would like to display vector graphics in my Windows C++ programs with minimal system requirements. Some of the possibilities are: 1. Enhanced Metafile Format format/EMF+, 2. Flash/SWG, 3. Silverlight/XAML, 4. SVG. The non-open proprietary nature of #2 & #3 make them unattractive. Since EMF+ is not amenable to easy editing, it leaves SVG as the only format worth pursuing. The trouble is that the major vendors have a lock on the market with their proprietary formats; leaving SVG high and dry with no easy native OS support. At least not on Windows. From what I could learn on the intertubes, Cairo is the best, if not only, reasonable system that may enable compiled SVG support. Unfortunately, AFAIK, it comes with a price tag of >2MB overhead and the C++ bindings are not straightforward." Read on for the rest of redblue's question; can you improve on his home-brewed solution?
Cellphones

Ten Features To Love About Android 1.5 384

Posted by kdawson
from the catchup-and-leapfrog dept.
An anonymous reader writes "Last month, Google officially announced the Android 1.5 update, dubbed 'cupcake.' The new software is apparently ready to roll out to Android-powered devices beginning tomorrow. Make no mistake, Android 1.5 is a major upgrade — they could have called it 2.0. The software brings a host of new capabilities, some of which can't be found on rival mobile platforms, including video recording and sharing."
Cellphones

iPhone App Refund Policies Could Cost Devs 230

Posted by Soulskill
from the money-for-nothin dept.
CBRcrash writes "Apparently, if iPhone users decide that they want a refund for an app (users can get a refund within 90 days, according to Apple policy), Apple requires that developers give back the money they received from the sale. But, here's the kicker: Apple will refund the full amount to the user and says that it has the right to keep its commission. So, the developer not only has to return the money for the sale, but also has to reimburse Apple for its commission."

If you're not part of the solution, you're part of the precipitate.

Working...