iPhone 3G Baseband 2.30 with Bootloader 5.8 can be Downgraded
Learn How to check iPhone Bootloader version (Windows)
Geohot (George Hotz) has found a loophole in iPhone 3G bootloader 5.8 that leads to downgrading iPhone Baseband 2.30 to 2.28. The exploit to downgrade iPhone Baseband works for bootloader 5.8 only.
Unfortunately, Majority of the users who wishes to downgrade are on bootloader 5.9. In one of his comments:
I’m convinced there’s a way to make it run the 5.8 ramloader instead of the bb in ram. means Unlocks for all versions.
Both iPhone Dev-Team and Geohot are finding the loopholes to accomplish this downgrade process for all those who’re waiting for their 3Gs to show network signals.
I’ve been off the iPhone scene for a while. A couple days ago, I got an e-mail from Chronic asking for help with the new asr. I helped out with genpass, and started reading through theiphonewiki again. Thanks so much for all the information contributed so far; it prompted me to find this.
In bootloader 5.8 on the 3G, the loader signature validator is broken. Someone botched an if statement checking the location and length of the loader in the cert. Because of this, you can pass the run cert for the firmware you currently have on the phone instead of the loader cert, and send whatever you want as a loader.
Here is a bspatch file to be applied to ICE2_02.28.00.fls allowing downgrades from 2.30.03 using BBUpdaterExtreme. By replacing the patched cert with your current run cert, you can downgrade from any other version.
Unfortunately, most 3G’s out there are bootloader 5.9 I was hoping, since RSA was added to the bootrom, that it would run the vulnerable ramstrapper, but I had no luck, although I didn’t try that hard. I see no reason why it shouldn’t work theoretically; the bootrom RSA is complicated, maybe when I finish EDA…
And dev, since you’re into hashes
882B7B3E84B76125755A84FB0BE52B9D8E25284D
If this page or section of the page needs to be updated, Submit Request
Share/Save this Post
|
|
Comments:
Trackbacks/Pingbacks
Leave a Reply
pls can someone tell me what to do i have a 3G iphone runing 2.2 firmware unlocked at a time i did update to 2.2.1 with 2.30.3 but funny enough itune still free the phone just that is not jailbroken.so i have to jailbreak it but still work with any sim verywell but i got dis prob that cant make calls without outside speaker and i cant listen to music with earphone too so i thought i was a normal restore that matters so i did the restore and now the phone is locked i can only jailbreak but the mean thing it that my earpicks is still not workin and i cant still playmusic using earphone pls i need help.
When I try to open the .dmg, it asks for a password. What is it ?
Hi there,
http://www.iphoneheat.com – da best. Keep it going!
Thanks
Zoran
Those who bought their iPhones after September2008 will have 5.9 bootloader which is not possible to downgrade as of now!
^ Not true. I bought my iPhone 3G before Sept 2008 and I have boot loader 05.09.
I bought my iPhone before Sep 2008 and have bootloader 05.09 as well
plz help me i have i phone wit 5.9 boot looder
my boot loader ver is 5.9
how can i downgrade it?????
can someone help downgrading bootloader 5.9 or find how to downgrade the BB while having BL 5.9….. i believe 1000s of people are facing this problem…. and i am one of them..
i got 5.9 also and iam waiting for a downgrade or anything that can help me because i can lose my job but somebody plz try your best to find a way to fix problem thanks
i have the same problem.GOsh when can we fix this. DEV team pls help us…many people same problem. 05.09 is bad!!pls i need my phone back..