I used Json.Parse bug (CVE-2016-7241) to leak addresses instead and after a bit of tweaking with the values, I was able to get the correct address for the chakra.dll. The POC itself was mostly complete, but the first bug (CVE-2016-7200) it used was patched on the console. Hacker unknownv2 has built his Xbox One exploit on top of Brian Pak’s proof of concept. This is known as the Chakra exploit, and a good read on the topic can be found here. A proof of concept was released for these vulnerabilities by developer Brian Pak, demonstrating how to use them in an exploit. In November last year, several critical vulnerabilities were found in the Edge browser, and disclosed by Microsoft as they patched them. Pretty much the same browser that you used once on Windows 10, to download google Chrome. The Xbox One uses Microsoft’s Edge browser.
0 kommentar(er)
