Post: libxml2 vulnerability, a new hack vector for Vita and PS4?
Options
05-07-2016, 01:05 AM
#1
Hydrogen
Super Mod
As Wololo stated here, he said that CTurt has confirmed to him that FreeBSD has had You must login or register to view this content., meaning that this vulnerability (if confirmed on PS4) would be useless on its own (Unless some other exploit could help bypass stack protection?).
Far as the Vita goes, it has been unknown if this would work. No one has tested it out yet, and maybe it wouldn't work due to the high-security patroling it.
Few words from Wololo: In order to test, someone would need to confirm if the test file (provided in the source link below) actually crashes the PS Vita (or the PS4) when accessed. To access such an XML file, one might have to use a proxy such as SKFU Pr0xy in order to trick the console and download the test file instead of one of the regular XML files it uses, for example to check for firmware update.
Who knows if this could be worth something. If it does turn out to be a great value towards the PS4, we might just have a little new toy to play with
Cheers, Hydrogen 
The following 4 users say thank you to Hydrogen for this useful post:
05-07-2016, 03:25 AM
#2
qNSp
Brute
Originally posted by Hydrogen
After reading Wololo's post on this topic, it may seem that libxml2 maybe a vunerabillity to the librarys that are on both consoles PS4 and Vita. Dragood2 had pointed out a Exploitable Vunerabillity on the library that can be ported for both consoles. This vunerabillity triggers a Stack Overflow, and now has its own CVE: CVE-2016-3705, which we have seen previously on the PS4 Playground by CTurt or on the Stack Overflows CTurt had used a bypassed a security check.
As Wololo stated here, he said that CTurt has confirmed to him that FreeBSD has had You must login or register to view this content., meaning that this vulnerability (if confirmed on PS4) would be useless on its own (Unless some other exploit could help bypass stack protection?).
Far as the Vita goes, it has been unknown if this would work. No one has tested it out yet, and maybe it wouldn't work due to the high-security patroling it.
Few words from Wololo: In order to test, someone would need to confirm if the test file (provided in the source link below) actually crashes the PS Vita (or the PS4) when accessed. To access such an XML file, one might have to use a proxy such as SKFU Pr0xy in order to trick the console and download the test file instead of one of the regular XML files it uses, for example to check for firmware update.
Who knows if this could be worth something. If it does turn out to be a great value towards the PS4, we might just have a little new toy to play with
As Wololo stated here, he said that CTurt has confirmed to him that FreeBSD has had You must login or register to view this content., meaning that this vulnerability (if confirmed on PS4) would be useless on its own (Unless some other exploit could help bypass stack protection?).
Far as the Vita goes, it has been unknown if this would work. No one has tested it out yet, and maybe it wouldn't work due to the high-security patroling it.
Few words from Wololo: In order to test, someone would need to confirm if the test file (provided in the source link below) actually crashes the PS Vita (or the PS4) when accessed. To access such an XML file, one might have to use a proxy such as SKFU Pr0xy in order to trick the console and download the test file instead of one of the regular XML files it uses, for example to check for firmware update.
Who knows if this could be worth something. If it does turn out to be a great value towards the PS4, we might just have a little new toy to play with
Cheers, Hydrogen
Hydrogen is quantum computer :troll:
working 24/7
Copyright © 2024, NextGenUpdate.
All Rights Reserved.
