can’t! The iOS 16.1.2 font replacement tool without jailbreak has just been released, and now the Files file manager appears? It is indeed true, but it currently only supports overlay or preview, and it cannot delete copy and paste for the time being, though! It has been proven that this vulnerability is indeed available and needs to be studied.
Let’s talk about the content of the vulnerability first. Regarding the tool for changing fonts in iOS 14.0 - 16.1.2, it uses the CVE-2022-46689 kernel vulnerability to obtain permissions, and then implements the method of overwriting the iOS system fonts. Attention! It is just mapping and overwriting, and restarting the phone will restore the original font.
Regarding the CVE-2022-46689 vulnerability, it was discovered by master lan Beer and has been patched on iOS 16.2 systems, which means that iOS 16.1.2 and below systems can exploit this vulnerability.
zhuowei also discovered some details of the CVE-2022-46689 vulnerability, and made a tool that supports font replacement for iOS 14.0 - 16.1.2 systems, confirming that the vulnerability is available, and also made it open source. Why he did this is mainly to encourage developers to try to exploit the vulnerability.
After learning that the iOS 16.1.2 kernel vulnerability has been made public, are there any developers who have exploited this vulnerability? Yes, there are, but it is basically in the testing stage at the moment. In the early morning of December 31, Mineek developers released a file manager called FileManager, which was made using the CVE-2022-46689 vulnerability.
FileManager file manager supports iOS 16.1.2 and below systems.
Unfortunately, the FileManager file manager can only overwrite files at present, but cannot create or delete files. in addition! The sandbox still blocks your access, but you can jump directly based on the path. but! It does access the directory effectively.
Interestingly, the System directory can be accessed directly, while other directories require jump access.
Although the author mentioned that it supports overwriting operations, I have been testing for a long time and have not found a way to overwrite files. If you find a way to overwrite files, please reply in the comment area.
Attention! A white screen will be displayed when opening the FileManager tool. You need to wait for 1 minute before normal access, or exit and open the FileManager tool multiple times in the background until you can access it. The same is true for accessing directories, it will be very slow, you need to be patient, after all, it is only for testing.
Install FileManager File Manager:
still does not have an available enterprise certificate and cannot provide online installation, so it can only be installed through computer Aisi Assistant, Sideloadly or Bullfrog Assistant. For FileManager file manager, you can go to the "New Interesting Toolbox" applet.
Although the FileManager function cannot meet our needs, we received a message through the FileManager tool, confirming that the CVE-2022-46689 vulnerability is indeed available. Next, we look forward to FilzaEscaped or Filza file manager updates, after all, they are technical.
That’s about it, by the way! Are you looking forward to the release of iOS 16.1.2 jailbreak-free Filza file manager? Please comment.
