60 matches found
EUVD-2007-1722
Malware in sbrugna...
EUVD-2006-4495
Malware in sbrugna...
EUVD-2009-2536
Malware in sbrugna...
Sony PlayStation Buffer Overflow Vulnerability
The Sony PlayStation is a series of home game consoles from the Japanese company Sony Sony. A buffer overflow vulnerability exists in Sony PS4 and PS5, which stems from a lack of length validation of the parameter dataLength parameter and can be exploited by an attacker to launch an attack agains...
Hacking the Sony Playstation 5
I just dont think its possible to create a hack-proof computer system, especially when the system is physically in the hands of the hackers. The Sony Playstation 5 is the latest example: Hackers may have just made some big strides towards possibly jailbreaking the PlayStation 5 over the weekend,...
Microsoft Signed Malware That Spreads Through Gaming
Microsoft signed a driver being distributed within gaming environments that turned out to be a malicious network filter rootkit. G DATA malware analyst Karsten Hahn first noticed the rootkit, publicly posting the find on June 17 and simultaneously reaching out to Microsoft. Hahn noted that the co...
curl: CVE-2021-22901: TLS session caching disaster
Summary: lib/vtls/openssl.c osslconnectstep1 sets up the osslnewsessioncb sessionid callback with SSLCTXsesssetnewcb, and adds association from dataidx and connectdataidx to current conn and data respectively: SSLCTXsetsessioncachemodebackend-ctx, SSLSESSCACHECLIENT | SSLSESSCACHENOINTERNAL;...
Sony Playstation 4 Use-After-Free
A use-after-free vulnerability exists in Sony Playstation 4. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Sony Playstation 4 (PS4) < 6.72 - 'ValidationMessage::buildBubbleTree()' Use-After-Free WebKit Code Execution (PoC)
const OFFSETELEMENTREFCOUNT = 0x10; const OFFSETJSABVIEWVECTOR = 0x10; const OFFSETJSABVIEWLENGTH = 0x18; const OFFSETLENGTHSTRINGIMPL = 0x04; const OFFSETHTMLELEMENTREFCOUNT = 0x14; const LENGTHARRAYBUFFER = 0x8; const LENGTHSTRINGIMPL = 0x14; const LENGTHJSVIEW = 0x20; const...
Sony Playstation 4 (PS4) < 7.02 / FreeBSD 9 / FreeBSD 12 - Kernel Local Privilege Escalation
Sony Playstation 4 PS4 include include include include include include include define KERNEL include undef KERNEL define WANTFILE include include include include include define WANTSOCKET include include define WANTINPCB include include include // define FBSD12 define ELFMAGIC 0x464c457f define...
Sony Playstation 4 (PS4) < 7.02 / FreeBSD 9 / FreeBSD 12 - 'ip6_setpktopt' Kernel Local Privilege Escalation (PoC)
/ FreeBSD 12.0-RELEASE x64 Kernel Exploit Usage: $ clang -o exploit exploit.c -lpthread $ ./exploit / include include include include include include include include define KERNEL include undef KERNEL define WANTFILE include include include include include define WANTSOCKET include include define...
Sony Playstation 4 (PS4) < 6.72 - WebKit Code Execution Exploit
Exploit for hardware platform in category web applications / Sony Playstation 4 PS4 6.72 - WebKit Code Execution Exploit badhoist ============ Exploit implementation of CVE-2018-4386. Obtains addrof/fakeobj and arbitrary read/write primitives. Supports PS4 consoles on 6.XX. May also work on older...
Sony Playstation 4 Webkit Code Execution
/ badhoist ============ Exploit implementation of CVE-2018-4386. Obtains addrof/fakeobj and arbitrary read/write primitives. Supports PS4 consoles on 6.XX. May also work on older firmware versions, but I am not sure. Bug was fixed in firmware 7.00. EDB Note Download:...
DDoS Attacker Who Ruined Gamers' Christmas Gets 27 Months in Prison
A 23-year-old hacker from Utah who launched a series of DDoS attacks against multiple online services, websites, and online gaming companies between December 2013 and January 2014 has been sentenced to 27 months in prison. Austin Thompson, a.k.a. "DerpTroll," pledged guilty back in November 2018...
Sony PlayStation Vita (PS Vita) - Trinity: PSP Emulator Escape
Trinity is a fully chained exploit for the PS Vita™ consisting of six unique vulnerabilities. It is based on a decade of knowledge and research. The source code of Trinity can be found here. Table of Contents - Table of Contents - Introduction - MIPS Kernel Exploit Type Confusion Double-fetch Rac...
SonyPlaystation 4 (PS4) < 6.20 - WebKit Code Execution Exploit
Exploit for hardware platform in category local exploits...
Hacker Who DDoSed Sony, EA and Steam Gaming Servers Pleads Guilty
A 23-year-old hacker from Utah pleaded guilty this week to launching a series of denial-of-service DoS attacks against multiple online services, websites, and online gaming companies between 2013 and 2014. According to a Justice Department DoJ press release, Austin Thompson , a.k.a. "DerpTroll,"...
Sony Playstation 4 (PS4) 5.1 - Kernel (PoC)
Sony Playstation 4 PS4 5.1 - Kernel PoC log"--- trying kernel exploit --"; function mallocsz var backing = new Uint8Array0x10000+sz; window.nogc.pushbacking; var ptr = p.read8p.leakvalbacking.add320x10; ptr.backing = backing; return ptr; function malloc32sz var backing = new Uint8Array0x10000+sz4...
Sony Playstation 4 (PS4) 4.55 < 5.50 - WebKit Code Execution (PoC) Exploit
Exploit for hardware platform in category local exploits window.didload = 0; window.didpost = 0; window.onload = function window.didload = 1; if window.didpost == 1 window.stage2; window.postExpl = function window.didpost = 1; if window.didload == 1 window.stage2; function makeid var text = ""; v...
Sony Playstation 4 (PS4) 4.55 < 5.50 - WebKit Code Execution (PoC)
window.didload = 0; window.didpost = 0; window.onload = function window.didload = 1; if window.didpost == 1 window.stage2; window.postExpl = function window.didpost = 1; if window.didload == 1 window.stage2; function makeid var text = ""; var possible =...