[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] Sony PS3 Firmware v4.31 - Code Execution Vulnerability
- To: Milan Berger <m.berger@xxxxxxxxxxxxxxxxxxxxx>
- Subject: Re: [Full-disclosure] Sony PS3 Firmware v4.31 - Code Execution Vulnerability
- From: Julius Kivimäki <julius.kivimaki@xxxxxxxxx>
- Date: Thu, 23 May 2013 04:13:31 +0300
Doubt it, PS3 doesn't really seem to have the concept of "system commands".
2013/5/22 Milan Berger <m.berger@xxxxxxxxxxxxxxxxxxxxx>
> Hi,
>
> > So, wanna tell me what exactly is critical about you being able to
> > inject marquee tags into your savefile names?
>
> didn't test the POC yet, but I guess the fun is here:
>
> >> [PERSISTENT INJECTED SYSTEM COMMAND OR CODE!]
>
> Injecting system commands..
>
>
> --
> Kind Regards
>
> Milan Berger
> Project-Mindstorm Technical Engineer
>
> ---
> project-mindstorm.net
> Fruehlingstrasse 4
> 90537 Feucht
> Germany
>
> Mob.: +49 176 22987602
>
> https://www.ghcif.de
> http://www.nopaste.info (for sale)
> https://www.digital-bit.ch
> http://www.project-mindstorm.net
>
>
> twitter: http://twitter.com/twit4c
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/