The bootromJixipix romantic photo 2 3 2013. (called 'SecureROM' by Apple) is the first significant code that runs on an iDevice. The bootrom is read-only. Finding exploits in the bootrom level is a big achievement since Apple won't be able to fix it without a hardware revision.
2Finding bootrom version
2.3From the DFU Device descriptors (all devices except S5L8900)
5Revisions
Old & New bootrom
Certain models, including the iPod touch (2nd generation) and iPhone 3GS, have different bootrom versions. These are most commonly referred to with the terms 'old bootrom' and 'new bootrom.' These 'new bootrom' devices were released after 9 September 2009 and have the 0x24000 Segment Overflow fixed. While the new bootrom revisions have an exploit, the exploit needs the assistance of a firmware-based exploit to achieve an untethered jailbreak.
Join our newsletter. Subscribe to our mailing list and get interesting stuff and updates to your email inbox. You have to confirm your subscription before receiving the newsletter. Hauppauge Wintv 7.2.28147 key code generator; Dance Ejay 6 serial key gen; Run Exe - Run.exe key generator; Driver Updater Pro 4.1.5.2 serials key; Paypal Money Adder Hack patch; Tinasoft Easycafe 2.2.14 patch; G7ps Versacheck 2007 patch; E2esoft Vcam 5.0 crack; Epson Printer Reset-serviceutility-latest serial key gen; Turbotax Deluxe serial.
You might also be looking for Apple's stage 2 bootloader, which also uses the 'iBoot' name.
Smart Driver Care Pro 1.0.0.24961 Crack: Nowadays, people often find it time-consuming to update their system and find the right drivers. Virtual drive for mac free. Outdated drivers are one of the reasons why errors occur in your system; therefore, if you ask any Computer expert he/she will recommend you to use a smart solution for this problem.
Usually also looking at the CPRV (Chip Revision) tag will also tell you whether the device is new unit or not also. Take entire screenshot on mac.
Finding bootrom version
From the model number (iPod touch (2nd generation))
If the second character of your Model Number is 'B' (e.g.- FB533, MB533, or PB533), your iPod has the old bootrom. If the second character is 'C' (FC086, MC086 or PC086), your iPod has the new bootrom.
From the serial number (iPhone 3GS)
The third digit of the serial number identifies the year of manufacture (9=2009, 0=2010, 1=2011, 2=2012), while the fourth and the fifth indicate the week. There is a gray area between week 40 of 2009 (??940??????) and week 45 of 2009 (??945??????) where some devices have new bootrom whilst others have old bootrom. . Any iPhone made after Week 45 of 2009 (??945?????? and higher or ??0???????? serials) has the new bootrom.
From the DFU Device descriptors (all devices except S5L8900)
Windows
Connect Device & Enter DFU Mode
Open Device Manager, find USB controller, subitem Apple Mobile Device USB Driver
Right-Click & click Properties
Go to Details tab & select Device Instance Path in the dropdown box
The end of the info string will show the bootrom version
Mac OS X
Connect Device & Enter DFU Mode
Go to System Profiler, and under the Hardware category, go to USB, and click on Apple Mobile Device (DFU Mode)
The end of the Serial Number string will show the bootrom version in brackets (ie: [iBoot-574.4])
Linux
Make sure your distribution has usbutils installed. (most distributions have it by default)
Connect Device & Enter DFU Mode
In terminal, run sudo lsusb -v
Find the line that says iSerial and your bootrom version will be at the end of the line.
Dumping the bootrom
You can use Bootrom Dumper Utility by pod2g to dump the bootrom on devices that are vulnerable to the Limera1n Exploit.
Bootrom Exploits
Pwnage 1.0 (Ramdisk + AppleImage2NORAccess) up to Rev.2
Pwnage 2.0 (DFU + Malformed Certificate) up to Rev.2
usb_control_msg(0xA1, 1) Exploit (also called 'steaks4uce' exploit) only for 240.4 and 240.5.1
0x24000 Segment Overflow only for 240.4 and 359.3
alloc8 Exploit only for 359.3 and 359.3.2
Limera1n Exploit up to 574.4
SHAtter up to 574.4
Checkm8 Exploit up to 3401.0.0.1.16
Revisions
Bootrom Rev.2 in S5L8900
Bootrom 240.4 in S5L8720 (old version only)
Bootrom 359.3 in S5L8920 (old version only)
Bootrom 240.5.1 in S5L8720 (new version only)
Bootrom 359.3.2 in S5L8920 (new version only)
Bootrom 359.5 in S5L8922
Bootrom 574.4 in S5L8930
Bootrom 838.3 in S5L8940
ROM in S5L8942
Bootrom 1062.2 in S5L8945
Bootrom 1413.8 in S5L8747
Bootrom 1458.2 in S5L8947
Bootrom 1145.3 in S5L8950
Bootrom 1145.3.3 in S5L8955
Bootrom 1704.10 in S5L8960 and S5L8965
Bootrom 1992.0.0.1.19 in T7000
Bootrom 1991.0.0.2.16 in T7001
Bootrom 2098.0.0.2.4 in S7002
Bootrom 2234.0.0.3.3 in S8000
Bootrom 2234.0.0.2.22 in S8003
Bootrom 2481.0.0.2.1 in S8001
Bootrom 2651.0.0.1.31 in T8002
Bootrom 2651.0.0.3.3 in T8004
Bootrom 2696.0.0.1.33 in T8010
Bootrom 3135.0.0.2.3 in T8011
Bootrom 3332.0.0.1.23 in T8015
Bootrom 3401.0.0.1.16 in T8012
Bootrom 3865.0.0.4.7 in T8020
Bootrom 3988.0.0.2.12 in T8006
Bootrom 4172.0.0.100.14 in T8027
Bootrom 4479.0.0.100.4 in T8030
S5L8900, used in the iPhone, iPod touch, and iPhone 3G
see also VROM (S5L8900)
S5L8720, used in the iPod touch (2nd generation)
Bootrom 240.4 'old bootrom'
Bootrom 240.5.1 'new bootrom'
S5L8747, used in the Haywire
S5L8920, used in the iPhone 3GS
Bootrom 359.3 'old bootrom'
Bootrom 359.3.2 'new bootrom'
S5L8922, used in the iPod touch (3rd generation)
S5L8930, used in the iPad, iPhone 4, Apple TV (2nd generation), and iPod touch (4th generation)
S5L8940, used in the iPad 2 and iPhone 4S
S5L8942, used in the iPad 2 (iPad2,4), Apple TV (3rd generation) (AppleTV3,1), iPod touch (5th generation), and iPad mini
S5L8945, used in the iPad (3rd generation)
S5L8947, used in the Apple TV (3rd generation) (AppleTV3,2)
S5L8950, used in the iPhone 5 and iPhone 5c
S5L8955, used in the iPad (4th generation)
S5L8960/S5L8965, used in the iPhone 5s, iPad Air, iPad mini 2, and iPad mini 3
T7000, used in the Apple TV HD, HomePod, iPad mini 4, iPhone 6, iPhone 6 Plus, and iPod touch (6th generation)
T7001, used in the iPad Air 2
S7002, used in the Apple Watch (1st generation)
S8000, used in the iPad (5th generation), iPhone 6s, iPhone 6s Plus and iPhone SE
S8001, used in the iPad Pro (12.9-inch) and iPad Pro (9.7-inch)
T8002, used in the Apple Watch Series 1, Apple Watch Series 2 and T1 MacBook Pros
S8003, used in the iPad (5th generation), iPhone 6s, iPhone 6s Plus and iPhone SE
T8004, used in the Apple Watch Series 3
T8006, used in the Apple Watch Series 4, Apple Watch Series 5 and Apple Watch SE
T8010, used in the iPad (6th generation), iPad (7th generation), iPhone 7, iPhone 7 Plus and iPod touch (7th generation)
T8011, used in the iPad Pro (10.5-inch), iPad Pro (12.9-inch) (2nd generation) and Apple TV 4K
T8015, used in the iPhone 8, iPhone 8 Plus, and iPhone X
Smart Converter Pro 3 0 1 0 Activation Codes
T8012, used in the iMac Pro and other T2 based Macs
T8020, used in the iPad (8th generation), iPad Air (3rd generation), iPad mini (5th generation), iPhone XR, iPhone XS and iPhone XS Max
Smart Converter Pro 3 0 1 0 Activation Code
T8027, used in the iPad Pro (11-inch), iPad Pro (12.9-inch) (3rd generation), iPad Pro (11-inch) (2nd generation) and iPad Pro (12.9-inch) (4th generation)
T8030, used in the iPhone 11, iPhone 11 Pro, iPhone 11 Pro Max and iPhone SE (2nd generation)
T8101, used in the iPad Air (4th generation), iPhone 12 mini, iPhone 12, iPhone 12 Pro and iPhone 12 Pro Max
T8301, used in the Apple Watch Series 6
Unknown
References
Retrieved from 'https://www.theiphonewiki.com/w/index.php?title=Bootrom&oldid=107951'