Submission + - Xbox360 Hypervisor Vulnerability - Homebrew on 360
RedLine writes: A new post on the BugTraq list released details on a critical vulnerability in Microsoft's Xbox360 that allows privilege escalation into hypervisor mode. Together with a method to inject data into non-privileged memory areas, this vulnerability allows an attacker with physical access to an Xbox 360 to run arbitrary code such as alternative operating systems with full privileges and full hardware access.
The post is a follow-up on the anonymous presentation held on December 30th at the 23C3 Hacker Congress that suggested running homebrew code on Xbox360 would be possible soon. The vulnerability works in kernel 4532 and 4548 but was fixed by Microsoft in kernel 4552 (released on Jan 09, 2007) after they were notified about the exploit.