MobileRead Forums - View Single Post - KindleDrip — From Your Kindle’s Email Address to Using Your Credit Card

dd23 · 01-21-2021, 11:15 AM

I just stumbled upon KindleDrip and have not seen it on the forum yet:
https://medium.com/realmodelabs/kind...d-bb93dbfb2a08

It's a very interesting read. Basically they describe how to execute code on a kindle by sending a manually crafted .mobi file via email.
For this they use multiple vulnerabilities/exploits on a PW3 with firmware 5.13.2.

Apart from the email part, they also describe in detail how they achieved code exection as root.
I'm no expert in Kindle firmware hacking, but I was wondering if the code execution could be used to jailbreak devices with somewhat more recent firmwares?
Afaik for the PW3 you have to jailbreak before firmware 5.9.6.1 (which is ancient) or use the serial port. So maybe this would be an option for a software jailbreak for people on firmwares <= 5.13.2?

01-21-2021, 11:15 AM	#2
dd23 Junior Member Posts: 7 Karma: 180 Join Date: Sep 2019 Device: PW3	KindleDrip I just stumbled upon KindleDrip and have not seen it on the forum yet: https://medium.com/realmodelabs/kind...d-bb93dbfb2a08 It's a very interesting read. Basically they describe how to execute code on a kindle by sending a manually crafted .mobi file via email. For this they use multiple vulnerabilities/exploits on a PW3 with firmware 5.13.2. Apart from the email part, they also describe in detail how they achieved code exection as root. I'm no expert in Kindle firmware hacking, but I was wondering if the code execution could be used to jailbreak devices with somewhat more recent firmwares? Afaik for the PW3 you have to jailbreak before firmware 5.9.6.1 (which is ancient) or use the serial port. So maybe this would be an option for a software jailbreak for people on firmwares <= 5.13.2?