xbox-scene.com archived forum

Xbox1 Forums => No-Modchip Hacks (exploits) => XBE Exploits => Topic started by: powerben5000 on July 03, 2003, 05:24:44 PM

Title: Xbox Dashboard Local Vulnerability
Post by: powerben5000 on July 03, 2003, 05:24:44 PM

 I'm no developer, so help me out here...

what exactly are the possibilities with this exploit?  And what advantages would this have over Complex's !loader disc? blink.gif  




Title: Xbox Dashboard Local Vulnerability
Post by: woo on July 03, 2003, 05:33:39 PM

 This exploit does EVERYTHING

The code is there to play with.  Right now, it only does Linux, but with a bit of playing it can be used to run absolutely everythings.... apps/emulators/games....... you name it.  This exploit only needs to be run once to install too.




Title: Xbox Dashboard Local Vulnerability
Post by: manekineko on July 03, 2003, 05:35:23 PM

 From my reading of it, possibilities are total.  You can do anything with this exploit including booting 3rd party software (EvoX) by default without a modchip and even going on Live and preventing the dashboard being overwritten again to prevent this.

You don't need to boot this from 007 everytime like before, since this one is permanent.




Title: Xbox Dashboard Local Vulnerability
Post by: itsjustme on July 03, 2003, 05:38:10 PM

 well it is pretty big from what i gather but i still think they handled it the wrong way.





Title: Xbox Dashboard Local Vulnerability
Post by: sox007 on July 03, 2003, 05:41:15 PM

 This is BOOT DISK level, (still need a memory card and 007 auf ext.(!one time!)) but unopened unmoded running of unsigned code.  




Title: Xbox Dashboard Local Vulnerability
Post by: XBLamer on July 03, 2003, 05:42:35 PM

 You use 007 to load the new font files. Then you are free to do what you want. You know longer need to flash the TSOP to run backups or anything else you want.

You can also use xbox live with backed up games or hacks or whatever (M$ will fix this in the next 24 hours if they have not already done so).








Title: Xbox Dashboard Local Vulnerability
Post by: nautiazn85 on July 03, 2003, 05:56:36 PM

 Anybody ever thought about how difficult it would be to actually swap an HD without a modchip? Once you swap to a new drive, you don't have a dashboard... how are you going to use the new exploit?

It's the modchip that allows unsigned programs like EVOX to run so that you can format the new HD WITHOUT a dashboard hack.

With this new hack, I don't think you can prepare a new drive without a PC.




Title: Xbox Dashboard Local Vulnerability
Post by: johnney5 on July 03, 2003, 06:01:18 PM

 Hey, so if we combine this new exploit, with the new M$Dash hack (the launcher within msdash), we will be unstoppable? heh. I got a question tho, if we use a locked 120 gig hdd, wont the xbox only recognize 8 gigs if it does not have modified bios? Or....will this exploit remove this limit




Edited by johnney5, 04 July 2003 - 02:02 AM.


Title: Xbox Dashboard Local Vulnerability
Post by: splat on July 03, 2003, 06:03:45 PM

QUOTE (nautiazn85 @ Jul 4 2003, 02:56 AM)
With this new hack, I don't think you can prepare a new drive without a PC.

Yeah, maybe I'm missing something, but I don't see what the big deal is...  The fact you still need to use the 007 hack or a hard drive swap is prohibitive to making the Xbox truly "independent".  It seems to me this guy has a personal beef with M$ and is trying to get as much attention as possible.  I don't blame MS for ignoring him, and I question the justification of him calling July 4th the "day of the XBOX independence".
-Dan




Title: Xbox Dashboard Local Vulnerability
Post by: krawhitham on July 03, 2003, 06:06:46 PM

QUOTE (XBLamer @ Jul 4 2003, 03:42 AM)
You use 007 to load the new font files. Then you are free to do what you want. You know longer need to flash the TSOP to run backups or anything else you want.

You can also use xbox live with backed up games or hacks or whatever (M$ will fix this in the next 24 hours if they have not already done so).

If they do fix it, what stops someone from using the 007 hack and coping and older version of the dashboard and all related files over M$s "new" fixed dashboard




Title: Xbox Dashboard Local Vulnerability
Post by: MaCeGaC on July 03, 2003, 06:07:59 PM

 Omg cant breathe big news cant.....*passes out*




Title: Xbox Dashboard Local Vulnerability
Post by: powerben5000 on July 03, 2003, 06:13:07 PM

 
QUOTE
Anybody ever thought about how difficult it would be to actually swap an HD without a modchip? Once you swap to a new drive, you don't have a dashboard... how are you going to use the new exploit?


I suppose you could still do a TSOP flash, but then you'd have to open the box to do that...kind of defeats the purpose...still a very interesting hack though.

I'm gonna sit back and watch this carefully, I wonder how MS will react or if they will do anything at all? .pop.gif  This seems too big to ignore.  A regular Pandora's Box if you will... blink.gif  




Title: Xbox Dashboard Local Vulnerability
Post by: PENTIUM75 on July 03, 2003, 06:18:53 PM

 How do these people get this smart? anyways, this is quite the hack and a pound in the ass for M$, in the near future it should be 007 or mechasault hack copy fontsound files and evox-> ms dashboard hack -> apps and backed up games.  I almost feel sorry for M$, but then I remember they're money grubbing whores smile.gif and they deserve it.

pop.gif  




Title: Xbox Dashboard Local Vulnerability
Post by: emmpee on July 03, 2003, 06:20:40 PM

QUOTE (krawhitham @ Jul 4 2003, 04:06 AM)

If they do fix it, what stops someone from using the 007 hack and coping and older version of the dashboard and all related files over M$s "new" fixed dashboard

See, the 'fixed' dashboard won't let you use the exploit. That's why it will have earned the term 'fixed'.




Title: Xbox Dashboard Local Vulnerability
Post by: LinksAwakening on July 03, 2003, 06:21:19 PM

QUOTE (PENTIUM75 @ Jul 4 2003, 03:18 AM)
How do these people get this smart? anyways, this is quite the hack and a pound in the ass for M$, in the near future it should be 007 or mechasault hack copy fontsound files and evox-> ms dashboard hack -> apps and backed up games.  I almost feel sorry for M$, but then I remember they're money grubbing whores smile.gif and they deserve it.

pop.gif

Keep in mind this could also hurt to good, honest game developers too... if too many n00bs look at this as an "easy" way to pirate games... (although not much easier than a modchip)...




Title: Xbox Dashboard Local Vulnerability
Post by: krawhitham on July 03, 2003, 06:22:27 PM

QUOTE (emmpee @ Jul 4 2003, 04:20 AM)
QUOTE (krawhitham @ Jul 4 2003, 04:06 AM)

If they do fix it, what stops someone from using the 007 hack and coping and older version of the dashboard and all related files over M$s "new" fixed dashboard

See, the 'fixed' dashboard won't let you use the exploit. That's why it will have earned the term 'fixed'.

how is a dashboard update going to stop the 007 hack?




Title: Xbox Dashboard Local Vulnerability
Post by: mattg39 on July 03, 2003, 06:41:55 PM

 I believe he will come out with another vulnerability.  One that will play from cd.  He says
QUOTE
This includes the lack of the reboot-on-eject-button "feature", which is obligatory for all games.





And a vulnerability is also for playing .wav

Quote
For an unknown reason this check is not performed on the audio (.wav) and font (.xtf) files.QUOTE]



So maybe the next one we will just have to put the .wav on a cd and the program and when the xbox plays the music, the program loads.




Title: Xbox Dashboard Local Vulnerability
Post by: Crypto on July 03, 2003, 06:49:31 PM

 Everyone seems concerned about the implications of only being able to use 8 gigs of the HD...  I see this being a good thing (It is to my knowledge that allowing for use of the F drive requires a modified bios, and we're still using the MS bios)...  

What this means is a true way to boot linux on an unmodded box, or homebrew games/apps/emulators etc.

At the same. the E drive doesn't contain enough space to make n00bz all buy xbox's to WaRReZZz0r the whole xbox library.

I see this (at least for the time being) being a huge step forward for the scene, and not much of a threat to developers.

So everybody wins! (except M$)

Just my .02

Great job X-Free! I was skeptical at first, but.. fantastic work!  beerchug.gif

- Crypto




Title: Xbox Dashboard Local Vulnerability
Post by: afon on July 03, 2003, 06:49:36 PM

 lol i thought about a corrupt wav file or something,if only my lazy ass would have done it. sad.gif  




Title: Xbox Dashboard Local Vulnerability
Post by: kingofthexbox on July 03, 2003, 06:55:09 PM

 I need help? Dont know where to start? What to do? How do I begin? AND WHERE CAN I GET THE FILES FROM?? uhh.gif  uhh.gif  uhh.gif  uhh.gif  uhh.gif  




Title: Xbox Dashboard Local Vulnerability
Post by: midgetfighter on July 03, 2003, 07:55:41 PM

 Its already begun  rolleyes.gif
Quote"I can already see the influx of n00bs to the scene asking how to open the .rar files for the pirated games they downloaded...  dry.gif "Quote

Id just try searching for this forum for answers on the 007 and mechassult hacks first and go from there

I see this as a bad thing, M$ is going to be pissed that everyone who owns an xbox now has the potetial to pirate their games even if they can only fit 2 on their 8gb harddrive. I still prefer the old modchip better than flashing the tsop, Im also not look forward to mandatory dashboard updates if M$ do decide to incorporate this It will just be a pain in the Ass. One upside I can see to this is more people becoming interested in the scene (hopefully a good thing) as this could bring about more kick ass development.

I just hope this wont be the start of very bad things.




Title: Xbox Dashboard Local Vulnerability
Post by: HumanClay on July 03, 2003, 07:59:12 PM

 
QUOTE
Everyone seems concerned about the implications of only being able to use 8 gigs of the HD... I see this being a good thing (It is to my knowledge that allowing for use of the F drive requires a modified bios, and we're still using the MS bios)...


you may swap hdd's with a xbox using this exploit and get full acess to the F drive just as with a modchip. Yuo must first however insert the hdd into your pc and run hd prepare properly with your xbox hdd key




Title: Xbox Dashboard Local Vulnerability
Post by: Perkele on July 03, 2003, 08:40:59 PM

QUOTE (HumanClay @ Jul 4 2003, 04:59 AM)
QUOTE
Everyone seems concerned about the implications of only being able to use 8 gigs of the HD... I see this being a good thing (It is to my knowledge that allowing for use of the F drive requires a modified bios, and we're still using the MS bios)...


you may swap hdd's with a xbox using this exploit and get full acess to the F drive just as with a modchip. Yuo must first however insert the hdd into your pc and run hd prepare properly with your xbox hdd key

And how is the XBox going to see the F-partition with the original bios??????




Title: Xbox Dashboard Local Vulnerability
Post by: lonemodder on July 03, 2003, 08:49:51 PM

 so let me se if i understand this, first copy code to notepad then donwload the UUDECODE prog and save the notepad file as linux.uue encoded as unicode and run UUDECODE on it. Am i right so far? Whats next?




Title: Xbox Dashboard Local Vulnerability
Post by: HumanClay on July 03, 2003, 08:51:16 PM

 
QUOTE
And how is the XBox going to see the F-partition with the original bios??????


It works is all I know...




Title: Xbox Dashboard Local Vulnerability
Post by: LinksAwakening on July 03, 2003, 08:55:22 PM

QUOTE (HumanClay @ Jul 4 2003, 05:51 AM)
QUOTE
And how is the XBox going to see the F-partition with the original bios??????


It works is all I know...

Have you tried this and can you comfirm it?

The original M$ bios will not recognize an unlocked HDD, and will definitely not recognize the F:\ drive.

This is all assuming you can even get the Xbox to boot off of an upgraded HDD, as M$ bios require the specific Xbox Motherboard\HDD pair to boot...




Title: Xbox Dashboard Local Vulnerability
Post by: HumanClay on July 03, 2003, 08:58:06 PM

 As said, the drive needs to be locked first by using your PC you lock it with YOUR xbox hddkey so its just like the original one, now I don't know for a fact this works with the Free-x hack but i know it works for the complex !loader and i assume this one as well




Edited by HumanClay, 04 July 2003 - 04:58 AM.


Title: Xbox Dashboard Local Vulnerability
Post by: Troed on July 03, 2003, 09:08:39 PM

 The implications are as follows (I'm now quoting myself from another thread here from yesterday):

***
Imagine using the 007 or MechAssualt hack to load files into the Xbox

Image those files creating a buffer overflow hack in the original dashboard

Imagine never having opened your Xbox, booting into the original dash, playing XboxLive at will.

Imagine just having to click in one of the original dashboard menus to boot up EvoX and start launching your backups, emulators and mediaplayers

Imagine the end of the modchip business
***

... followed by a little controversial bit:

***
oh almost forgot:

Booting EvoX is done above by patching the BIOS in ram. Now Imagine EvoX before launching your backup, hooking one of the bootloader routines in the xbe, launching the game, and when the hook is called patching the bios _back_ into original state.

Backups on XboxLive
***

http://forums.xbox-s...=ST&f=3&t=42520





Title: Xbox Dashboard Local Vulnerability
Post by: HumanClay on July 03, 2003, 09:10:16 PM

 
QUOTE

Booting EvoX is done above by patching the BIOS in ram.

Ok that explains how You can acess the F drive, the bios is pacthed on the fly




Title: Xbox Dashboard Local Vulnerability
Post by: krackheadbill on July 03, 2003, 10:07:53 PM

 user posted image
muhahahahahahahaha  




Title: Xbox Dashboard Local Vulnerability
Post by: PENTIUM75 on July 03, 2003, 11:59:57 PM

QUOTE (LinksAwakening @ Jul 4 2003, 04:21 AM)
QUOTE (PENTIUM75 @ Jul 4 2003, 03:18 AM)
How do these people get this smart? anyways, this is quite the hack and a pound in the ass for M$, in the near future it should be 007 or mechasault hack copy fontsound files and evox-> ms dashboard hack -> apps and backed up games.  I almost feel sorry for M$, but then I remember they're money grubbing whores smile.gif and they deserve it.

pop.gif

Keep in mind this could also hurt to good, honest game developers too... if too many n00bs look at this as an "easy" way to pirate games... (although not much easier than a modchip)...

This is true, look at the dreamcast, its poor design also had a boot disk created almost right after it came out, but look at it this way, if games didn't cost $50+, they wouldn't have problems, Enter the matrix made millions of dollars by atari, yet most all atari games are still $40+.  I guess it's all about profit, always wanting more.  I urge everyone to use theyre modchip or bios for its real legal use, backing up your games you spend hundreds of dollars for. And of course playing super mario bros on fce smile.gif .