Editing Vulnerabilities
Jump to navigation
Jump to search
The edit can be undone. Please check the comparison below to verify that this is what you want to do, and then publish the changes below to finish undoing the edit.
Latest revision | Your text | ||
Line 352: | Line 352: | ||
Tested working on PS4 FWs 9.00-9.04 and PS5 FWs 3.00-4.50. Untested: PS5 FWs 2.10-2.50, 4.51. | Tested working on PS4 FWs 9.00-9.04 and PS5 FWs 3.00-4.50. Untested: PS5 FWs 2.10-2.50, 4.51. | ||
=== FW | === FW ?.??-7.55 - WebCore::ValidationMessage::buildBubbleTree() UaF leading to arbitrary RW === | ||
==== Credits ==== | ==== Credits ==== | ||
Line 378: | Line 378: | ||
==== Patched ==== | ==== Patched ==== | ||
'''Yes''' in 8.00 FW. Tested working on FWs 6.00-7.55, not working on | '''Yes''' in 8.00 FW. Tested working on FWs 6.00-7.55, not working on FW 5.05. HTML textarea guessed addresses for FWs 6.70-7.55 are known but not for lower FWs so attacker needs to make tests to determine these addresses on FWs <= 6.51. | ||
=== FW 6.00-6.72 - bad_hoist Type Confusion exploit (CVE-2018-4386) leading to arbirary RW === | === FW 6.00-6.72 - bad_hoist Type Confusion exploit (CVE-2018-4386) leading to arbirary RW === |