Okay, so before you ignore this I've already asked some devs in the discord server and they said that this might be doable but there are some issues that could (maybe) be solved.
THEORY: The eShop uses the same mvplayer.rpl in 5.5.2 that the internet browser used in 5.5.1, and the eShop also has JIT. So theoretically, the Exploit video should work in the eShop.
ISSUES:
1) Unlike Crunchyroll ads, the eShop uses an SSL connection with the servers, so it would be extremely hard (if not impossible) to remap a video (i.e. The Super Mario Cat Show that you can play/watch in the eShop.) to the exploit .mp4.
2) This is still untested, so even after all of that work fixing the SSL, it might not work. (i.e missing an essential library item, code execution failing, video player has a different patch from internet browser, etc.)
3) I was thinking of attempting to redirect the eShop to a custom server where we could play the exploit .mp4, but (again curse SSL) that would either require remapping to redirect the Wii U or maybe changing the URL using FTPii and going into the title information, but that would require access to the Homebrew launcher, which kind of defeats the purpose.
So I wanted to put this theory out there in case anyone can come up with a solution to these problems, or to tell me it can't be done so I stop working on it.
Thanks for reading.
THEORY: The eShop uses the same mvplayer.rpl in 5.5.2 that the internet browser used in 5.5.1, and the eShop also has JIT. So theoretically, the Exploit video should work in the eShop.
ISSUES:
1) Unlike Crunchyroll ads, the eShop uses an SSL connection with the servers, so it would be extremely hard (if not impossible) to remap a video (i.e. The Super Mario Cat Show that you can play/watch in the eShop.) to the exploit .mp4.
2) This is still untested, so even after all of that work fixing the SSL, it might not work. (i.e missing an essential library item, code execution failing, video player has a different patch from internet browser, etc.)
3) I was thinking of attempting to redirect the eShop to a custom server where we could play the exploit .mp4, but (again curse SSL) that would either require remapping to redirect the Wii U or maybe changing the URL using FTPii and going into the title information, but that would require access to the Homebrew launcher, which kind of defeats the purpose.
So I wanted to put this theory out there in case anyone can come up with a solution to these problems, or to tell me it can't be done so I stop working on it.
Thanks for reading.
Attachments
Last edited by Wolfer473,