A new hardware exploit targeting the early Xbox One model may finally unlock full system control for modders.
The group of people who mod video games has changed dramatically since hackers were considered to have made a significant step forward with the initial Xbox One. There was a time when people thought the system was one of the safest ones out there. On the other hand, a new hack suggests that the wall may now be down for good.
This study is mostly about a flaw in the first consoles that came out in 2013. Online technical demos show that researchers were able to get into the system’s boot ROM, which is a very secure part of the machine. Once hackers reach this level of access, they might be able to run code that hasn’t been signed. This is a necessary step for a full homebrew system to work.
That talk goes over each step of the process and shows how the hack was found and used. It’s pretty long, at almost an hour. Attackers are said to be able to get into the machine through the operating system and hypervisor, among other places. If developers had that much access, they could run their software in places other than Microsoft’s public ones.
The hacker doesn’t just use regular software bugs. A small drop in the CPU’s voltage rail was timed by the hacker to try to change how the system handles instructions during boot. The attack, which was named “Bliss,” was able to get around ways to protect memory by doing this.
New Hardware Exploit Opens Door For Xbox One Homebrew.
Two voltage glitches that happen at exactly the same time are said to be used in the attack. The first one makes it impossible to set up the ARM Cortex memory security system for the machine. The second bug does not let a memory copy happen during the header read step. This process can be used by the attacker to change the system so that data they control runs.
This means that the console’s security system is no longer working at all. Since you have this much power, you can put unsigned code anywhere in the system, even in the host and the operating system. Reports say that the exploit also lets people get into the security processor of the machine. So, software, games, and other data that have been protected could be opened.
There is a very important catch, though. You can’t just put this on a USB drive and expect it to work like a simple crack. To do the process, the motherboard of the machine needs to be changed literally. For the hack to work, the voltage glitches need to be made by soldering wires to certain spots.
Due to its complexity, most people will not be able to make the change without professional help. Modchips and other hardware choices could make the process easier in the future, though. People might not need as many wires or find it easier to set up these kinds of gadgets if they come out.
People have said that this method is like the well-known Xbox 360 Reset Glitch Hack, which I find interesting. Both the old and the new exploits use a bug in the boot process to let someone take control of the computer.
Early Xbox One Models Could Become Valuable For Modders.
Up until now, the system had a limited feature called “developer mode.” Users could run some apps, like emulators, safely with this feature. And developer mode only lets you use a small part of the computer. It doesn’t give you full access to the deeper system layers. That whole situation changes when there is a real exploit.
Developers might be able to make a lot more home-brewed software, special operating systems, and test apps if they had full access to the system. It’s still early days for the big step forward, and the homebrew group will likely need some time to figure out what it can do.
Developers need to check out the hack, make sure it works, and then start making tools or tips that other people can use. Fans are still very happy about what they found, though. If the exploit works and is simple to use, the old system could be used for the first time in over ten years to play games and look around.
What this means for now is that it might make more people want early forms of the system. It looks like the exploit only works with certain hardware models. Collectors and modding fans may start looking for those original units before they sell for more money online.
