Once again TheFlow has shown that he knows a lot about vulnerabilities, it must be said that with his experience on Sony consoles, the Google security researcher was able to unveil a presentation “Blu-Ray Disc Java Sandbox Escape” which few people had echoed upstream, relying on a Blu-ray player which is a gateway as was the case on PS3.
No less than 51 pages are revealed, and it seems that this type of vulnerability is also possible on Xbox One and Series X since they also have a Blu-ray player. It’s still amusing to see how TheFlow describes himself, a security engineer at Google by day, and a PlayStation console hacker by night.
The elements revealed do not allow direct hacking of the PS3, PS4 or PS5 consoles, but facilitate the execution of certain specific processes which nevertheless remain limited such as:
– mmap which does not allow pages with PROT_WRITE | PROT_EXEC.
– A shared page can be RX in one process and RW in another process.
– On PS4: JIT features of the JVM runtime are moved to a different process and are communicated through Unix domain sockets.
– On PS5: JIT JVM is not supported
Once all this is revealed, he concludes by confirming once again that by combining these vulnerabilities with a kernel exploit, this leads to the availability of Debug Settings on PS5proof that he succeeded in hacking, without the slightest doubt, Sony’s latest home console.
.
The post [PS5] TheFlow Confirms PS5 Hack Vulnerabilities PDF appeared first on Gamingsym.