It's up to game devs to disable it (skeletal tracking took up a fair portion of GPU compute, and it used to run no matter what until the SDK was updated). It won't make a difference if it's plugged in or unplugged.He is not wrong about unplugging the Kinect. They announced you can use more CPU? resources in games without it plugged in I believe.
Well it is running Internet Explorer... ontop of Windows 8. SO, I wouldn't be surprised to be honest.
People thinking a proprietary computer can't get a virus remind me of the people who think Mac's can't get a virus. Complete lunacy!
Is this a thing? Can Xbox One consoles get infected with malicious software like a typical Windows PC? I've never heard of this.
He is not wrong about unplugging the Kinect. They announced you can use more GPU? resources in games without it plugged in I believe.
http://www.cnet.com/news/microsoft-xbox-one-is-10-percent-more-powerful-without-kinect/
Games must be coded to take advantage of this though; otherwise it won't do anything.
It's probably sandboxed but at the end of the day it is internet explorer.
Not that big of a stretch, after all the console runs IE on a variant of Windows 8.
Well it is running Internet Explorer... ontop of Windows 8. SO, I wouldn't be surprised to be honest.
No. If you can get around the hypervisor, you're not going to pop up a box telling folks to call a scam toll free number. You're going to sell that exploit for bank.
Yes, he is. Unplugging the Kinect has -zero- effect on what is available to the game.
cnet said:As for the GPU boost for the Kinect-less Xbox One, it doesn't only apply to developer kits or the recent unbundled version of the Xbox One. Any Xbox One not plugged into a Kinect can tap into the performance bump. That's not to say that unplugging your Kinect right now will suddenly spruce up the graphics of the titles in your current library. Rather, it's a software-side capability that allows developers in the future to utilize the hardware differently. "Clarified that unplugging Kinect from current Xbox One consoles does not yield a performance boost; developers must optimize current and future games for the performance boost using Microsoft's soon-to-be-released SDK. "
Did you bother reading the article at all?
It can have an affect. I don't know if any games are currently coded to take an advantage, but to say "it does nothing" is flat out wrong.
Did you bother reading this?Did you bother reading the article at all?
It can have an effect. I don't know if any games are currently coded to take an advantage, but to say "it does nothing" is flat out wrong.
Major Nelson said:Dear Media: The GPU change was developer facing. Unplugging Kinect does not get you more HP. Devs have to code to the new specs.
Did you bother reading this?
https://twitter.com/majornelson/status/474597301303140352?s=09
ahahahahaha omg
Unplugging the Kinect does not do anything. Devs are just allowed to disable it from using processing power so games an use more. It being plugged in during these games doesn't do anything since it won't be used anyway.
That article is wrong in the first half of the paragraph and actually tries to correct itself.
You are partially correct. Kinect can be plugged in and still have the GPU boost, the game is just locked out of skeletal tracking.Dear Media: The GPU change was developer facing. Unplugging Kinect does not get you more HP. Devs have to code to the new specs.
I was under the impression you can get 10% more; however devs have to code their games to take advantage of it? Perhaps I'm not reading this correctly?
So someone want to try to replicate this? Shouldn't be that hard to goto some sites and get some Malware installed on the browser. Theoretically it should be possible to get a virus on the console, but it will only affect the Windows VM/Thread.
Alright thanks for editing your post to explain. Sorry for reading articles that are never corrected, and not following Hyrb on twitter.
It probably doesn't. Malware (adware) is a bit different as it isn't actually executing any unsigned code.so how does an X1 get a virus anyway? I'm thinking it could happen by visiting an attack website possibly? perhaps choosing x86 for the CPU wasn't wise. there are already so many viruses written for x86.
Heres a 20 page thread about it on gamefaqs
http://www.gamefaqs.com/boards/691088-xbox-one/68534554
So someone want to try to replicate this? Shouldn't be that hard to goto some sites and get some Malware installed on the browser. Theoretically it should be possible to get a virus on the console, but it will only affect the Windows VM/Thread.
It looks it just IE popups messages on xbox oneliquidblue4 on gamefaqs said:http://www.gamefaqs.com/boards/691088-xbox-one/68534554?page=19 post number #192
k. Since TC is still trolling I'm just going to end it right here. Took me less than 5 minutes to replicate.
You don't have a virus. You never did. It's a popup and you only have to close the tab and it never returns. You're finished.
http://img546.imageshack.us/img546/8756/5c2h.jpg
http://img191.imageshack.us/img191/6346/8w2e.jpg
http://img801.imageshack.us/img801/5094/5spt.jpg
http://img545.imageshack.us/img545/6443/pba2.jpg
---
If the Xbox One starts running a version of Windows 10 I don't think it would be outside the realm of possibilities. As for right now, I doubt it.
so how does an X1 get a virus anyway? I'm thinking it could happen by visiting an attack website possibly? perhaps choosing x86 for the CPU wasn't wise. there are already so many viruses written for x86.
I hope you are kidding because this topic and your reply are the most idiotic things that i have read here today. And there was a lot of stupid stuff.
No wonder MS wants a different name for their new browser. Not to sound as snarky as this will undoubtedly sound, but please, do some research.
Guys, of course it's possible for a console to get a virus. With Xbox One, I would even argue it's easy. I can't believe the level of misinformation going back and forth in this thread.
OS is windows based, so there are known vulnerabilities in the os. Browser is IE based, so there are known vulnerabilities in the browser. Done and done.
What's so strange about parental controls?noticed this the other day...thought it was strange...
Nope and nope.
Do you even know how malware works? Because to those of us who actually do, you sound completely ridiculous.
Generally speaking, any computer can be infected with malware, so yeah it's possible with the Xbox One too.
Tell me why. And just to add, despite how it may sound, I'm not trying to say that the XB1 (or any console for that matter) is invulnerable to malware. Just that the reasons you stated for why it could happen are pretty weak. To further add, it kind of reminds me of the people who made joke after joke about the BSOD soon after MS unveiled the original Xbox.
Cpp please stop, everything you are typing is speculation but you're presenting it as educated fact. If you're going to put comments about privilege escalation and apps breaking out of their sandbox please cite sources on the xbox app security model.
The reddit thread just shows an annoying browser pop up. That's it and that's all.
The reasons I stated are not weak at all. There are a lot of people out there who all they do is sit around reverse engineering Windows and IE looking for vulnerabilities. Many of these have never been disclosed, and some attackers are just sitting on banks of vulnerabilities. This isn't fiction, it's real. Xbox 1 does use Hyper-V to segment different parts of the OS, so it's probably not at risk for being fully rooted through a browser, but those are not the only type of exploits that exist. Hyper-V instances are still susceptible, for example, to local privilege escalation attacks, and it is virtually guaranteed that there is nothing Xbox One could do to stop this.
This kind of attack would most likely occur when the user visited a malicious website. If you used NeoGAF on mobile a few weeks ago, you'll know firsthand that this can happen without your consent. Over 90% of page loads on NeoGAF a few weeks ago were automatically redirecting to a spam website, and it was widespread for all users, due to a poisoned ad. If someone poisons an ad with a redirect to a website that contains an exploit that grants local privilege escalation, guess what?
You might say "oh sure, but what could it actually do?" All the apps run in the same Hyper-V instance, so in theory this would allow arbitrary code execution within that instance. It could, for example, inject a filter into your network stack that can read and/or modify your traffic. It won't be able to affect your games though, since that runs in a different Hyper-V instance, and it won't be able to root the actual console, so it probably couldn't do things like install new apps or allow homebrew.
But it could very easily gain access to sensitive personal details that are used by any of the apps on your system, and/or modify their behavior.
Well as the next poster says, I'm interested how a sandboxed winrt app can inject into the network stack, for example (clue: It can't).There is nothing about speculation here. My original post in this thread was "of course Xbox Ones can get viruses". I'm telling you one possible attack vector. What source do you expect to see for a possible attack vector? It might not have been exploited yet!
If you can run unsigned code on a retail game console, you are going to do one of two things:
Sell it to a company that will use it to ultimately develop some means of software piracy that they can turn into a proprietary product to sell (like a usb dongle)
or
Release it publicly (possibly as an open source project) so that the homebrew community can grow around it
If this is real, it is not specifically targeting Xboxes. It is some browser shenanigans that the Xbone's version of IE can't cope with yet.
Nice hypothesis I guess. But with JIT completely disabled in the browser, and with Microsoft's digital signature required to run any code in the first place, and with that authenticated code only having access to heavily sandboxed WinRT APIs, how exactly do you propose that that code do anything malicious?
There are plenty of sandbox escapes that don't rely on JIT, and IE doesn't have a particularly strong sandbox anyway. I mean, it's ok, it's just not great. My first idea would be to try to exploit their HTML5 video code.
Edit: Seems I wasn't the only one with this idea. Proof of concept in Firefox: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8643