| Inicio | Noticias | Foros PSP | Juegos | Videos | Manuales | Buscar | Contacto | Staff | Publicidad |

Retroceder   Foros PS Vita y PSP > Foro PS Vita > Scene Ps Vita

Respuesta
 
Herramientas
Antiguo 05/17/16, 13:52:56   #1
seneka 128
PS Vita FAT 3.63
 
Avatar de seneka 128
 
Fecha de Ingreso: Aug 2005
Ubicación: L´Eliana, Valencia
Mensajes: 38.357
Thanks: 7.364
Thanked 17.946 Times in 9.045 Posts
seneka 128 su reputacion va mas alla de lo posible
seneka 128 su reputacion va mas alla de lo posibleseneka 128 su reputacion va mas alla de lo posibleseneka 128 su reputacion va mas alla de lo posibleseneka 128 su reputacion va mas alla de lo posibleseneka 128 su reputacion va mas alla de lo posibleseneka 128 su reputacion va mas alla de lo posibleseneka 128 su reputacion va mas alla de lo posibleseneka 128 su reputacion va mas alla de lo posibleseneka 128 su reputacion va mas alla de lo posibleseneka 128 su reputacion va mas alla de lo posibleseneka 128 su reputacion va mas alla de lo posibleseneka 128 su reputacion va mas alla de lo posibleseneka 128 su reputacion va mas alla de lo posibleseneka 128 su reputacion va mas alla de lo posibleseneka 128 su reputacion va mas alla de lo posibleseneka 128 su reputacion va mas alla de lo posibleseneka 128 su reputacion va mas alla de lo posibleseneka 128 su reputacion va mas alla de lo posible

Aportador masivo Reportero del mes Aportador masivo Reportero del mes 

Predeterminado [libxml2]Posible nueva vulnerabilidad en PS Vita/PS4


Descubierta nueva vulnerabilidad para PSVita:
libxml2 vulnerability, a new hack vector for Vita and PS4?

Scene member Dragood2 dropped by our forums recently to point a new vulnerability in libxml2, an open source XML processing library.
The interesting part for readers of this blog is that libxml2 is a library used both on the PS4 and the PS Vita. An exploitable vulnerability in the library could potentially be ported to these consoles.

I was expecting the forum thread would generate lots of replies but it hasn’t received the attention it deserves so far. The vulnerability is fresh, so it is most likely present on the PS4 and the PS Vita. The question of course, is if this could lead to an exploit or not.

"A couple of weeks back while working on a related bug [CVE-2016-3627] I discovered a specially created xml file is capable of triggering a stack overflow before libxml2 can detect its a invalid xml file."

The vulnerability triggers a stack overflow, and now has its own CVE: CVE-2016-3705.

For the PS4, CTurt has confirmed to me that FreeBSD has had Stack Protector baked in since FreeBSD 8.0, meaning that this vulnerability (if confirmed on PS4) would be useless on its own (Unless some other exploit could help bypass stack protection?).

Status of the vulnerability on the PS Vita is unknown so far and I don’t think anyone has tested. I do not know if the PS Vita’s firmware has some sort of stack protection implemented. Given that the PS Vita has been a tough nut to crack with pretty advanced security, it wouldn’t be surprising, but it would be great if Vita experts could chime in.
Fuente

Según cuenta Wololo, esta nueva vulnerabilidad estaría basada en una librería xml de la que hacen uso tanto PS4 como PSVita, en la consola de sobremesa es mas que probable que ya este corregida, pero para nuestra portátil ni tan si quiera ha sido probada, y se necesita comprobar si puede llegar a ser un sitio por donde meterle mano:

In order to test, someone would need to confirm if the test file (provided in the source link below) actually crashes the PS Vita (or the PS4) when accessed. To access such an XML file, one might have to use a proxy such as SKFU Pr0xy in order to trick the console and download the test file instead of one of the regular XML files it uses, for example to check for firmware update.
There’s some test work to be done here, but nothing fundamentally hard.

Normally I would not blog about this in such early stages, when nothing’s been confirmed, but I think this needs some visibility, and people with time+skills to confirm if something can be done with this.

Source: oss-sec mailing list, via dragood2 on /talk (repro xml file in the bugzilla link)

Para probarlo, se necesita confirmar que utilizando el archivo xml se cuelga la consola cuando trate de leerlo. Para hacerlo es necesario utilizar un proxy como el SKFU Pr0xy para engañar a la consola y tratar de descargar el xml en vez de los xml originales utilizados por ejemplo para comprobar las actualizaciones de firmware.





Fuente
__________________
seneka 128 is offline   Responder Con Cita
Antiguo 09/30/16, 09:29:44   #2
crisman
Senior Member
 
Avatar de crisman
 
Fecha de Ingreso: Sep 2006
Ubicación: df
Mensajes: 280
Thanks: 4
Thanked 6 Times in 6 Posts
crisman por el buen camino
Predeterminado Re: [libxml2]Posible nueva vulnerabilidad en PS Vita/PS4

muy interesante
__________________
Mi negrita:1.5 :>3.10 OE-A'>3.30 OE-A>3.40OE-A>3.52m33-4>3.71m33-3>3.80m33-5>3.90m33-3>robada2012>PS Vita 3.60-64g
crisman is offline   Responder Con Cita
The Following User Says Thank You to crisman For This Useful Post:
seneka 128 (02/03/17)
Respuesta

Bookmarks

Herramientas



La franja horaria es GMT +2. Ahora son las 16:54:56.


Powered by: vBulletin, Versión 3.8.5
Derechos de Autor ©2000 - 2017, Jelsoft Enterprises Ltd.
Traducción VBulletin por vbulletinhispano.com