According to Pod2g Blog he posts some details on how the Corona Convert Tethered Jailbreak iOS 5.0.1 to untethered jailbreak 5.0.1 .
In a new post on his blog, pod2g notes that Apple has fixed all previous known ways of executing unsigned binaries in iOS 5.0 so Corona had to do it another way.
For Corona, I searched for a way to start unsigned code at boot without using the Mach-O loader. That’s why I searched for vulnerabilities in existing Apple binaries that I could call using standard launchd plist mechanisms.
Using a fuzzer, I found after some hours of work that there’s a format string vulnerability in the racoon configuration parsing code ! racoon is the IPsec IKE daemon (http://ipsec-tools.sourceforge.net/). It comes by default with iOS and is started when you setup an IPsec connection.
Now you got it, Corona is an anagram of racoon 
.
Pod2g notes that the the ROP exploit payload triggers a kernel exploit that relies on an HFS heap overflow bug he found earlier.
I don’t know exactly what happens in the kernel code, I never figured it out exactly, I found it by fuzzing the HFS btree parser. I just realized that it is a heap overflow in the zone allocator, so I started to try to mount clean, overflowed and payload images in a Heap Feng Shui way And hey, that worked :p Thanks to @i0n1c for his papers on this subject.
Tweet
To be the First one On saw iPhone 5 Pictures, Prices, etc.. stay Updated on Google
You can follow Mohamed Sabry on Twitter, join our Facebook fanpage and add me on Google+ to keep yourself updated on the latest jailbreak and unlock news.
{ 10 comments… read them below or add one }
Next time try to encrypt your jb so apple takes more time to patch it!
that means
you should keep how your jb works as a secret!!
I think that pod2g have forgot about people what donate him he ignores them and doesn’t sey nothing about JB iphone 4S still talking about iphone 4 try change the most important title
Jailbreak Iphone 4S
I hope I can help. I reinstalled Cydia: Manage/ Cydia Installer/ Modify/
Reinstall. After reinstalling I got Big Boss back and all the packages
that were missing. I hope it works for you too!
I just want to say I am just very new to weblog and truly savored this website. More than likely I’m want to bookmark your blog post . You definitely come with beneficial writings. Cheers for sharing your webpage.
I keep listening to the news broadcast speak about getting free online grant applications so I have been looking around for the most excellent site to get one. Could you tell me please, where could i find some?
Only wanna say that this is extremely helpful, Thanks for taking your time to write this.
AI do not drop a ton of comments, but i did a few searching and wound up here How Corona works – Pod2G Report | Jailbreak iOS 6 – 5.1.1 UnTeteherd. And I do have a couple of questions for you if you usually do not mind. Could it be only me or does it give the impression like some of these comments look like they are coming from brain dead people?
And, if you are writing at additional social sites, I would like to follow anything fresh you have to post. Would you list of the complete urls of your social sites like your Facebook page, twitter feed, or linkedin profile?
You made some respectable factors there. I regarded on the internet for the issue and located most individuals will go together with together with your website.
Good day very cool site!! Guy .. Beautiful .. Wonderful .. I will bookmark your web site and take the feeds also…I am happy to find a lot of helpful info right here in the post, we’d like develop more strategies in this regard, thank you for sharing.
I like the efforts you have put in this, thank you for all the great posts.