Hacking Spectre exploit possible through webkit?

Thatguywhotriedwuphax

Member
OP
Newcomer
Joined
Apr 21, 2018
Messages
6
Trophies
0
Age
21
XP
89
Country
United Kingdom
Spectre affects modern CPUs, such as those found in the PS4, which gives applications access to normally inaccessible areas of memory.

If a WebKit exploit is found that can take advantage of this bug, there is a possibility that code in the hypervisor can be accessed and dumped somewhere, where new exploits could use bugs in this code to trick the hypervisor into thinking that the software is legit.

Probably pointless babble. But I wanted to give my (probably dumb) idea to this community.
 
Last edited by Thatguywhotriedwuphax,
  • Like
Reactions: KiiWii

KiiWii

Editorial Team
Editorial Team
Joined
Nov 17, 2008
Messages
12,922
Trophies
2
Website
defaultdnb.github.io
XP
15,582
Country
United Kingdom
It’s not about webkit exploits taking advantage of this bug.

If you think about it we have webkit exploits that work up to 7.02.

It’s: if it can be adapted to work as part of the exploit chain (at all) on PS4 hardware.
 
  • Like
Reactions: Hayato213

aranwarez

Active Member
Newcomer
Joined
Feb 24, 2009
Messages
43
Trophies
0
XP
780
Country
Nepal
hopefully one day an unpatchable exploit will be found that allows homebrew to run that isn't internet dependent, or we can get a leaked fake-signing tool like the PS3 has, to run homebrew from USB as legit games and apps.
Once people are no longer interested in PS4 it will happen.
 

MostlyUnharmful

Well-Known Member
Member
Joined
Feb 8, 2018
Messages
409
Trophies
0
Age
40
XP
1,417
Country
Italy
If a WebKit exploit is found that can take advantage of this bug, there is a possibility that code in the hypervisor can be accessed and dumped somewhere, where new exploits could use bugs in this code to trick the hypervisor into thinking that the software is legit.

I'm probably nitpicking, but from what I know the PS4 has no hypervisor, all security relies on kernel integrity...

If you instead meant using the "meltdown/specter" class vulnerabilities against the secure enclave (SAMU) well, according to someone of the scene SAMU was already defeated, but I'm in no position to say if they are trolling or also if it has the same branch prediction defects found on Intel CPUs and if it could be exploited.
 
  • Like
Reactions: KiiWii
General chit-chat
Help Users
    KennieDaMeanie @ KennieDaMeanie: https://youtu.be/0VHx7gERE-Y it's just a prank bro