Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 


Forgot your password?
Close
typodupeerror
×
XBox (Games) Security

Xbox Hypervisor Security Protection Hacked 232

Posted by samzenpus from the they're-in dept.
ACTRAiSER writes "A recent Post on Bugtraq claims the hack of the Xbox 360 Security Protection Hypervisor. It includes sample code as well." From Bugtraq "We have discovered a vulnerability in the Xbox 360 hypervisor that allows privilege escalation into hypervisor mode. Together with a method to inject data into non-privileged memory areas, this vulnerability allows an attacker with physical access to an Xbox 360 to run arbitrary code such as alternative operating systems with full privileges and full hardware access."
This discussion has been archived. No new comments can be posted.

Xbox Hypervisor Security Protection Hacked More

Xbox Hypervisor Security Protection Hacked

Comments Filter:

  • Re:Sweet (Score:2, Informative)

    by JebusIsLord ( 566856 ) on Wednesday February 28, 2007 @09:02PM (#18189206)
    Weird... i'm using mine for exactly that, and without any hacks! (Yes, it does have to work as an extender, but anyone who isn't impressed by Windows Media Center hasn't used it yet. No I'm not an astroturfer).

    The 360 is easily the most exciting console I've owned since the PSX, given all it can do. I don't even have cable hooked up to my 1080p TV - its basically just a monitor for my 360.

    No, I guess this wasn't a very informative post... i mostly just wanted to give MS props for doing at least something right. You know; compliment before you criticize.

  • Re:That's Because... (Score:5, Informative)

    by Kalriath ( 849904 ) on Wednesday February 28, 2007 @09:04PM (#18189224)

    Does MS force updates for things like this?
    Yes. As soon as your XB360 attempts to connect to Live (which even without you paying, it will do if you signed up for it) it will demand you update or it will disconnect you (which with Live-connected dashboard accounts signs you out of your local XB360 profile too)

  • From the article... (Score:5, Informative)

    by non0score ( 890022 ) on Wednesday February 28, 2007 @09:06PM (#18189256)
    Sadly, unless you haven't updated your machine in the last two months, this wouldn't matter as MS has already patched it. As for those of you with an "unpatched" kernel, let's just say this is like v1.5 PSPs.

  • Re:Sweet (Score:3, Informative)

    by SP33doh ( 930735 ) on Wednesday February 28, 2007 @09:13PM (#18189336)
    under $400?

    you have to pay extra for the HD dvd drive...

  • Re:Blue Pill time. (Score:2, Informative)

    by Kalriath ( 849904 ) on Wednesday February 28, 2007 @10:37PM (#18189992)
    Well, that depends. Is there code embedded into the processor to watch for "code tainting"? It's probable that there might be... to prevent you from using third party utilities on Xbox Live. If such is the case, your Xbox might survive, but your hardware ID gets an instaban from XBL.

  • Re:Ironically, I might buy one now (Score:2, Informative)

    by Osty ( 16825 ) on Thursday March 01, 2007 @12:24AM (#18190692)

    I've been looking to upgrade my media streamer capabilities and the original XBOX can run Xbox Media Center (http://www.xboxmediacenter.com/). I wonder if this means that a 360 version with HD streaming might be forthcoming? I hope so. I've been avoiding getting one because how locked down it is.

    You do realize that the 360 can act as a Media Center Extender for Windows XP Media Center 2005 and Vista, right? Also, the 360 can stream music and (with the Fall 06 patch) videos from any "compatible" UPnP media server (technically only Windows Media Connect and WMP11 are supported, but there are apps to do the same on OS X and Linux since all the MSFT apps are really doing is acting as a UPnP media server). Yes, there are codec limitations, but you can transcode on the fly easily enough if you have a powerful enough server.

    It just seems weird to me that your killer app is media streaming, but you won't buy a 360 that does that out of the box (or close enough, with the Update). Similarly, if you wanted to develop homebrew games the 360 can already do that with XNA. It has some growing to do still, but expect big things from XNA in the coming months/years. Why would you wait until there's a hack to do that when you could build supported homebrew games already?

  • Re:Modchips? (Score:2, Informative)

    by romland ( 192158 ) on Thursday March 01, 2007 @01:10AM (#18190952)
    Yes, absolutely. But there are some things that need to be dealt with first, one being how to prevent the efuse from being blown (prevents kernel from being downgraded).

  • Re:Attacker?? (Score:5, Informative)

    by karmatic ( 776420 ) on Thursday March 01, 2007 @01:48AM (#18191206)
    Quoth the parent: See my comment here.

    You might think you own it, but SUPRISE, you are licensing it.

    The fact you keep repeating the same wrong information doesn't make it any less wrong.

    Adobe made that same claim you are making. It didn't go over well in court. [cryptome.org] It didn't go over too well for Microsoft either (Microsoft Corp. v. DAK Indus). Novell tried that argument, and got shot down too (Novell, Inc. v. CPU Distrib., Inc., 2000 ).

    "...the Ninth Circuit held that the economic realities of the agreement indicated that it was a sale, not a license to use."

    "... Like Adobe, CPU argued that it purchased the software from an authorized source, and was entitled to resell it under the first sale doctrine. Novell claimed that it did not sell software but merely licensed it to distribution partners. The court held that these transactions constituted sales and not a license, and therefore that the first sale doctrine applied. 2000 U.S. Dist. Lexis 9975 at *18."

    "...The Court finds that the circumstances surrounding the transaction strongly suggests that the transaction is in fact a sale rather than a license. For example, the purchaser commonly obtains a single copy of the software, with documentation, for a single price, which the purchaser pays at the time of the transaction, and which constitutes the entire payment for the "license." The license runs for an indefinite term without provisions for renewal. In light of these indicia, many courts and commentators conclude that a "shrinkwrap license" transaction is a sale of goods rather than a license."

    "...Ownership of a copy should be determined based on the actual character, rather than the label, of the transaction by which the user obtained possession. Merely labeling a transaction as a lease or license does not control. If a transaction involves a single payment giving the buyer an unlimited period in which it has a right to possession, the transaction is a sale."

    "Raymond Nimmer, The Law of Computer Technology 1.18[1] p. 1-103 (1992). The Court agrees that a single payment for a perpetual transfer of possession is, in reality, a sale of personal proper and therefore transfers ownership of that property, the copy of the software. "

    So, at least in the US, a one-time payment for a perpetual use of software is a SALE, regardless of what you call it, and rightfully so. They can't change that with a EULA any more than a car dealership could claim you had a one-time lease payment, with a lifetime use period and the right to transfer the lease for free (thus avoiding legal regulations with regards to sale of vehicles). Any reasonable court would rule that such was a sale, not a lease. What you call it doesn't matter.

  • Re:MacOSX (Score:1, Informative)

    by Anonymous Coward on Thursday March 01, 2007 @07:24AM (#18192484)
    What Apple called a "G5" was a PPC 970(xx). Seeing as the XBOX 360 doesn't use this CPU, it won't ever be "a nice small G5".

    The G5 iMac, however, was EXACTLY that, shame Apple never put the dual-core G5 CPU in it (one of the main reasons why there was a performance boost when they went to the intel Core Duo).

  • Re:Blue Pill time. (Score:2, Informative)

    by Anonymous Coward on Thursday March 01, 2007 @09:25AM (#18193026)

    You realize you can get Linux for the PS3 right? So if you just wanted a Cell processor to play with you don't have to go the MSFT route.
    Huh? You *can't* go the MSFT route, the Xbox 360 processor *isn't* a Cell [wikipedia.org].

  • Audio is transcoded automatically (Score:2, Informative)

    by Kerre ( 591709 ) on Thursday March 01, 2007 @09:33AM (#18193096)
    Even though the 360 only plays WMV and MPEG2 video, audio gets transcoded automatically if you use the 360 an extender. Most of my music is stored as LAME encoded 192/256 kb VBR MP3's and the 360 in the living room plays them just fine. I don't know what the media extender software does internally - you probably do lose some quality as the XP or MCE pc transcodes your music on-the-fly. Video can be transcoded using other apps like Transcode360: http://www.runtime360.com/ [runtime360.com] I haven't tried this myself though.

  • Re:Attacker?? (Score:3, Informative)

    by drinkypoo ( 153816 ) <drink@hyperlogos.org> on Thursday March 01, 2007 @11:26AM (#18194380) Homepage Journal

    the Xbox360 will only use hard drives that have a Microsoft PNG logo stored in a certain location on them. For someone trying to boot Linux off the hard drive, in addition to the technical hurdles of hacking the OS they also have to wrestle with trademark infringement.

    Negative. Courts have already ruled this is OK. IIRC it was a case dealing with the Sega Genesis, which had to have a sega copyright notice in the ROM to play the game. They ruled that you could put that notice in there legally because it was required for interoperability.

Slashdot Top Deals

It's a naive, domestic operating system without any breeding, but I think you'll be amused by its presumption.

Close