More stories in the Consoles category
| Don’t miss anything and follow us on Google News! |
It has been no less than 11 years since the Xbox One was launched on the market. A console with a rock-solid operating system that had not been compromised until now. In this detailed article, I myself explained to you the reasons why the console could not be hackedAmong them are the Game Pass, the low cost of games and the much-needed online features.
The fact is that there is already a first exploit that allows loading unsigned software on the console. The exploit is 100% functional, but the loading work is still very green since it only allows the gateway, as its creators say, it is. it will take a lot of work to come. It project on GitHub
Currently, pirated copies or unsigned applications cannot be loaded.
Obviously, this goes beyond downloading pirated copies of games, which is certainly not possible yet. It also opens the door for emulators and other software to take advantage of console hardware that could benefit from new types of uses. Not to mention the possibility that we could have a backup of our games in case one day a store closes.
As of now, this exploit works with Xbox One, Xbox One S, Xbox Series. They are running kernel versions 25398.4478, 25398.4908, and 25398.4909.
Subscribe to the GX channel on YouTube
UWP apps were the gateway
The initial entry point is via the Game Script UWP app, which means that the vulnerability was found in a method of loading UWP apps compatible with Xbox consoles. It’s not new that this type of app is a trap, we’ve already seen in the past how emulators were camouflaged in PDF readers, for example.
According to its creators, It seems there is still time so that it is possible to create an easy loading tool for the game and homebrew user.
This first release is primarily for developers. Currently, a way to place the files in the LocalState directory of the game script is required via an application such as Adv File Explorer (FullTrust). This is due to the need to place the stage2.bin and run.ex files in the LocalState directory. In the near future, a payload will be provided to load these files over the network. So the initial payload will simply be a script that can be entered via a USB keyboard emulator.
The reverse shell example provided here requires the console to be connected to a network. When connecting the console to a network, be sure not to connect to the internet or perform any updates. Try to block connectivity to Xbox LIVE as much as possible, at least by setting your DNS to invalid servers.
This exploit is not completely reliable. It relies on a CPU-side channel and a race condition, and both can fail. If they fail, the exploit may notify you of its failure via network output, or the console itself may crash and reboot.
It remains to be seen how this topic evolves, homebrew has always been a topic that interested me a lot, and it allowed me to enjoy my Original Xbox years after Microsoft shut down Xbox Live thanks to Xlink Kai.
👋 Follow us on:
Stay up to date with all the latest Xbox and Microsoft news on our social channels.
