Toggle sidebar

Can the BD-JB Blu-ray Disc Java Sandbox Escape by TheFlow be used on the xbox one

  • Thread starter Thread starter XboxModder2
  • Start date Start date
  • Views Views 5,295
  • Replies Replies 24
  • Likes Likes 1
brouh said:
I saw on his presentation months ago that the xbox one is also affected by it, so any hope for a jailbreak with this?
Click to expand...
In theory, it could work for booting backups burnt to a disc but I don't believe anyone has managed to pull it off. As far as leading to an actual jailbreak of the console for homebrew outside of dev mode, it's not likely
 
  • Like
Reactions: XboxModder2 and SylverReZ
brouh said:
how does someone start with doing this
Click to expand...

Using this image: https://www.mediafire.com/file/6a6aexvvm36o3t3/Doom-BluPlay.iso/file (by Shykelit above, who sent me the image months ago at the time of the Tweet). This is just executing Java code contained in the bluray disc.

More info:
https://en.wikipedia.org/wiki/BD-J

A list of homebrew games you can play through this method:
https://www.blu-play.com/links

As for reversing & exploiting the interpreter: it's very easy to obtain the binaries from a dev-mode console nowadays, so it isn't a far-fetched idea to maybe look up for vulns. If anyone wants to look into it feel free to ping me btw
 
  • Like
Reactions: XboxModder2, SylverReZ and CompSciOrBust
brouh said:
yes im pretty sure
Click to expand...
It's cool.
Torus said:
Using this image: (by Shykelit above, who sent me the image months ago at the time of the Tweet). This is just executing Java code contained in the bluray disc.

More info:

A list of homebrew games you can play through this method:

As for reversing & exploiting the interpreter: it's very easy to obtain the binaries from a dev-mode console nowadays, so it isn't a far-fetched idea to maybe look up for vulns. If anyone wants to look into it feel free to ping me btw
Click to expand...
Xbox Series X too works?
 
Last edited by lolki,
M4x1mumReZ said:
Wonder if it will be possible to transfer over the contents of the Xbox One's memory to a PC via FTP with this method in mind?
Click to expand...
We should do some testing and post the results, its dire in the xbox one scene lol
Post automatically merged:

Torus said:
Using this image: https://www.mediafire.com/file/6a6aexvvm36o3t3/Doom-BluPlay.iso/file (by Shykelit above, who sent me the image months ago at the time of the Tweet). This is just executing Java code contained in the bluray disc.

More info:
https://en.wikipedia.org/wiki/BD-J

A list of homebrew games you can play through this method:
https://www.blu-play.com/links

As for reversing & exploiting the interpreter: it's very easy to obtain the binaries from a dev-mode console nowadays, so it isn't a far-fetched idea to maybe look up for vulns. If anyone wants to look into it feel free to ping me btw
Click to expand...
I am interested in finding some vulnerabilities but i have no idea how to and where to look lol, i already have dev mode and everything
 
Last edited by XboxModder2,
BD-J and BD-JB are not the same thing. BD-J is a standard feature on all Bluray players which follow the standard properly. It allows java code execution in a sandboxed environment. BG-JB specifically targets the PS4/5 implementation of BD-J to allow for full userland code execution. While possible that Microsoft made a similar mistake with their implementation, it's extremely unlikely to be 1:1. Though it is a possible entry point to start looking for vulnerabilities.
 
  • Like
Reactions: CompSciOrBust
sudeki300 said:
ah, sorry buddy totally misread the post, apologies.
Click to expand...
no worries
Post automatically merged:

Tomato123 said:
BD-J and BD-JB are not the same thing. BD-J is a standard feature on all Bluray players which follow the standard properly. It allows java code execution in a sandboxed environment. BG-JB specifically targets the PS4/5 implementation of BD-J to allow for full userland code execution. While possible that Microsoft made a similar mistake with their implementation, it's extremely unlikely to be 1:1. Though it is a possible entry point to start looking for vulnerabilities.
Click to expand...
ah i see, thanks, so bdjb is the only way forward right?
Post automatically merged:

Tomato123 said:
BD-J and BD-JB are not the same thing. BD-J is a standard feature on all Bluray players which follow the standard properly. It allows java code execution in a sandboxed environment. BG-JB specifically targets the PS4/5 implementation of BD-J to allow for full userland code execution. While possible that Microsoft made a similar mistake with their implementation, it's extremely unlikely to be 1:1. Though it is a possible entry point to start looking for vulnerabilities.
Click to expand...

this video shows that the BD-J exploit works though
 
brouh said:

this video shows that the BD-J exploit works though
Click to expand...

Because BD-J is not an exploit. It's a feature of the Bluray standard. Easiest way I can try explain is imagine you have BD-J which is like 10% of the system's functionality unlocked (But planned like that by Sony/Microsoft/etc). BD-JB exploits the already unlocked 10% to unlock an extra 40% of that functionality, which is the exploit part of this all. (The percentages are just arbitrary numbers with no real meaning other than to portray my point.)

The names do cause a lot of confusion, but there is a big difference between the two.
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Full Disclosure: Xbox One S Hardware Timing & Memory Injection Vulnerability

Homebrew  ioQuake3-One

Hacking  Markus Gaasedelen‘s xb1 vulnerability In a nut shell