Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [Full-Disclosure] Re: Full-disclosure digest, Vol 1 #970 - 38 msgs

From: Stefan Esser <s.esser () e-matters de>
Date: Wed, 23 Jul 2003 22:21:51 +0200
Hello,


Anyone Heard Any more on The XBOX Hack


currently there are 4 known exploits against XBOX software.
(order of releasedate)

1) 007: Agent under Fire - Savegame Stackoverflow Exploit
2) Mechassault           - Savegame Stackoverflow Exploit
3) Dashboard Font Loader Integer/Heap Overflow
4) Dashboard Audio CD Ripper Integer/Stack Overflow

The first 2 are overflows in games and therefore it is not
possible to use the DVDROM (box will reset when you press
eject). The Dashboard overflows on the other side give full
control over the box.

You can find actual information about all this on sites like

   http://www.xbox-scene.com


Stefan


-- 

--------------------------------------------------------------------------
 Stefan Esser                                        s.esser () e-matters de
 e-matters Security                         http://security.e-matters.de/

 GPG-Key                gpg --keyserver pgp.mit.edu --recv-key 0xCF6CAE69 
 Key fingerprint       B418 B290 ACC0 C8E5 8292  8B72 D6B0 7704 CF6C AE69
--------------------------------------------------------------------------
 Did I help you? Consider a gift:            http://wishlist.suspekt.org/
--------------------------------------------------------------------------

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Previous By Date Next
Previous By Thread Next

Current thread: