glyphstrip FAQ button
Halo.bungie.org
glyphstrip
Frequently Asked Forum Questions
 Search the HBO News Archives

Any All Exact 
Search the Halo Updates DBs

Halo Halo2 
Search Older Posts on This Forum:
Posts on Current Forum | Archived Posts


A programmer's perspective
Posted By: Xorian <ken@xorian.net>Date: 7/22/08 11:58 a.m.

In Response To: Warning - do not open halo 3 image "im on fire" (sharpsniper99)


: The image itself is a mod, or perhaps a overloaded picture (if thats
: possible) - either way it causes your xbox to freeze, it has apparently
: even caused rrod in older console's.

I was a little surprised when I heard about this. I think I might understand one method by which you could do this.

There are USB devices you can buy which will allow you to read and write the Xbox 360 memory units from a PC. I've been using one of those for a while to archive Halo 3 content so that I can go past the "100 custom content items" limit. (I have a lot of saved films, film clips, and screenshots.)

I've been using this purely for archiving and restoring, but with some extra software I'm sure it's possible to modify the contents on the memory unit. This may be how they're getting arbitrary images into Halo 3 and from there uploaded to file shares.

I could definitely understand how an invalid image file could cause the software (either the game or the whole Xbox 360) to freeze. It might even be possible to do more malicious things. Bugs in software that make assumptions about data content can sometimes be exploited to make the software do bad things. (This is usually called code injection.)

What surprises me about this is that I would have expected Bungie to anticipate and guard against this sort of injection of images that weren't generated by the Halo 3 theater. The Halo software could have digitally signed each screenshot. The signature could then be checked are various points (by the server when uploading to a file share and by the Xbox when downloading from a file share).

Of course maybe there are such protections in place. Maybe the people doing this have managed to extract the private key used to sign the images from the Halo 3 game data and are signing these injected images using it to defeat the signature checking. I'm just guessing.

Vesta (software I work on)


Message Index



Replies:

Warning - do not open halo 3 image "im on fire"sharpsniper99 7/21/08 9:17 a.m.
     Re: Warning - do not open halo 3 image "im on fireJ23 7/21/08 9:38 a.m.
           Re: Warning - do not open halo 3 image "im on firesharpsniper99 7/21/08 9:54 a.m.
                 Re: Warning - do not open halo 3 image "im on fireSonGoharotto 7/21/08 10:18 a.m.
                       Re: Warning - do not open halo 3 image "im on fireBryan Ojeda 7/21/08 10:32 a.m.
                             Re: Warning - do not open halo 3 image "im on firemub 7/21/08 11:02 a.m.
                       Re: Warning - do not open halo 3 image "im on firexMixMasterx 7/21/08 12:38 p.m.
                             Re: Warning - do not open halo 3 image "im on firesharpsniper99 7/21/08 1:06 p.m.
                                   Re: Warning - do not open halo 3 image "im on firexMixMasterx 7/21/08 2:20 p.m.
                 Re: Warning - do not open halo 3 image "im on fireFalagard 7/21/08 11:03 a.m.
                       exactlyMiguel Chavez 7/21/08 11:31 a.m.
                             Re: exactlyLouis Wu 7/21/08 11:35 a.m.
                                   Re: exactlyBryan Ojeda 7/21/08 11:54 a.m.
                                         Re: exactlyLouis Wu 7/21/08 12:06 p.m.
                                               Re: exactlyBryan Ojeda 7/21/08 12:09 p.m.
                                               Re: exactlymendicantbias00 7/21/08 12:11 p.m.
                                                     Re: exactlyBryan Ojeda 7/21/08 12:13 p.m.
     I'm confused (as usual)DiscipleN2k 7/21/08 12:14 p.m.
           Re: I'm confused (as usual)mendicantbias00 7/21/08 12:17 p.m.
                 Re: I'm confused (as usual)sharpsniper99 7/21/08 12:28 p.m.
                 Re: I'm confused (as usual)DiscipleN2k 7/21/08 12:33 p.m.
                       The picture has been removed on Bungie.netHellhawk 7/21/08 12:43 p.m.
                             Re: The picture has been removed on Bungie.netBryan Ojeda 7/21/08 12:59 p.m.
                                   Re: The picture has been removed on Bungie.netSpartan Jag 7/21/08 1:32 p.m.
                                         Shh...let him have his moment in the sun *NM*detranova 7/21/08 1:43 p.m.
                                               Will he be arriving via slingshot? *NM*Vincent 7/21/08 1:50 p.m.
     Dunno if you guys also saw this...Pkmnrulz240 7/21/08 7:39 p.m.
     A programmer's perspectiveXorian 7/22/08 11:58 a.m.
           You have the smarts of a criminal mastermind. :-o *NM*Hellhawk 7/22/08 12:11 p.m.
           Archiving over USBXorian 7/22/08 2:13 p.m.



contact us

The HBO Forum Archive is maintained with WebBBS 4.33.