PS4 Aux Hax 4: Belize via CEC

随机文章
原文链接:fail0verflow.com

通过 PS4 Aeolia 处理器固件上的漏洞实现代码执行

感觉现在的主机破解,几乎都是软硬结合的做法。复制粘贴一下里面的做法:

  1. Tap onto CEC-related i2c and irq lines and HDMI encoder power switch
  2. Power up PS4 and enter Rest Mode
  3. Wait for “EAP running” message from custom EAP kernel
  4. Induce the CEC RX interrupt
  5. Feed data to EMC such that it causes a stack buffer overflow
  6. Wait for EMC to copy SRAM to DDR3
  7. Dump copied SRAM out of UART

看看这破解的实现,再看看里面跳的这几根线,简直神来之笔!