Difference between revisions of "Modal Browser"

From PlayStation 5 Dev Wiki
Jump to navigation Jump to search
 
(One intermediate revision by the same user not shown)
Line 7: Line 7:
 
Vulnerabilities:
 
Vulnerabilities:
  
# On firmware 20.02.02.20.00.07-00.00.00.0.0 and below, the browser does not verify the Certificate Authority of the certificate of the page loaded over HTTPS. allowing for man in the middle attacks on https sites. via a proxy server or dns change.
+
# On firmware 20.02.02.26.00.00-00.00.00.0.0 and below, if you reply to the HTTPS CONNECT with an HTTP response, instead of attempting to create a tunnel the browser will just display that response

Latest revision as of 17:02, 27 November 2020

According to Sony the PS5 does NOT have a "dedicated web browser app" but this isnt true,

there is a 'modal' browser, just like on ps3/4/vita that can be called from an app to load a webpage,

its used on ps5 to load the users guide, login to twitter/youtube/twitch/etc

Vulnerabilities:

  1. On firmware 20.02.02.26.00.00-00.00.00.0.0 and below, if you reply to the HTTPS CONNECT with an HTTP response, instead of attempting to create a tunnel the browser will just display that response