Homebrew RAM editing glitch on any 3DS, might lead to an exploit?

seijinshu

...
Member
Joined
Jan 6, 2016
Messages
483
Trophies
0
Location
...
XP
248
Country
United States
Well, I'm not here to offend anyone, nor I know every bit of the 3DS, but let's get real, this is starting to turn cringey :wacko:

First, you would need to ROP your way out of the sandbox (most possibly by overwriting the built-in BASIC functions), and this would ONLY give us ARM11 USERLAND code execution.

Second, even though for a VERY weird reason SmileBasic requires (and has) pxi:dev, that doesn't always mean ARM9 code execution and downgrading! iirc the last ARM9 code execution exploit was patched after 9.2

I know this was harsh, but get real, people!
If you read about my comment... Petit Computer is pretty much an older version of smilebasic. For the dsi, and is on the eShop for 8 bucks.

Now to what I got:
The code won't run (not surprising)
But this is still something someone more knowledgeable than me should look into.
 

shutterbug2000

Cubic NINJHAX!
Member
Joined
Oct 11, 2014
Messages
1,088
Trophies
0
Age
28
XP
4,868
Country
United States
If you read about my comment... Petit Computer is pretty much an older version of smilebasic. For the dsi, and is on the eShop for 8 bucks.

Now to what I got:
The code won't run (not surprising)
But this is still something someone more knowledgeable than me should look into.

PetitComputer was removed after the announcement of SmileBasic AFAIK.
 

seijinshu

...
Member
Joined
Jan 6, 2016
Messages
483
Trophies
0
Location
...
XP
248
Country
United States
There's a very big difference between TWL arm9 kernel and NATIVE arm9 kernel. Namely, the memory mappings are that of a DS in TWL. I think you'll find this relatively futile.
Yep. But if we get ram viewing, someone like you or someone else knowledgeable in arm execution can look at what can be done.

Not jumping to conclusions. It is a crazy idea, but I think if we can manage to edit the memory of PTC, and get out of the sandbox, I think someone should investigate.

Ofc, if someone wants me to do it (after my fateshaxx dilemma), I'll start researching arm9 instead of arm11.
 

Sono

cripple piss
Developer
Joined
Oct 16, 2015
Messages
2,800
Trophies
2
Location
home
XP
9,221
Country
Hungary
If you read about my comment... Petit Computer is pretty much an older version of smilebasic. For the dsi, and is on the eShop for 8 bucks.

Now to what I got:
The code won't run (not surprising)
But this is still something someone more knowledgeable than me should look into.

Why did you quote me? I know Petit Computer is the predecessor of SmileBasic for the DSi. And? This is 3DS, not DSi
And yes, everyone know that someone needs to look into it, someone may be secretly (or semi-secretly) working on it, becuse if it were to come public, everyone would harrass that poor person to release it already.

Yep. But if we get ram viewing, someone like you or someone else knowledgeable in arm execution can look at what can be done.

Not jumping to conclusions. It is a crazy idea, but I think if we can manage to edit the memory of PTC, and get out of the sandbox, I think someone should investigate.

Ofc, if someone wants me to do it (after my fateshaxx dilemma), I'll start researching arm9 instead of arm11.

Well, read the above.

But you got the point, iirc there's no ARM9 code execution exploit since 9.2, so that's really what someone might want to look into. Knowing Ninty, they always derp up something after they have fixed anything,

so there might be a hidden ARM9 exploit in the FIRM
</sarcasm>
 
Last edited by Sono,
  • Like
Reactions: Koko-Kun

Swiftloke

Hwaaaa!
Member
Joined
Jan 26, 2015
Messages
1,770
Trophies
1
Location
Nowhere
XP
1,467
Country
United States
Even if you take over Petit Computer, that's not going to mean much, as you're still in twl_firm. I doubt that you'd somehow be able to keep your code running while transferring over to regular FIRM. If we could, someone would have already figured it out within regular dsi/ds homebrew.
As for arm9 kexploits, ahem ntrcardhax
 
  • Like
Reactions: Seedbon

Sono

cripple piss
Developer
Joined
Oct 16, 2015
Messages
2,800
Trophies
2
Location
home
XP
9,221
Country
Hungary
Even if you take over Petit Computer, that's not going to mean much, as you're still in twl_firm. I doubt that you'd somehow be able to keep your code running while transferring over to regular FIRM. If we could, someone would have already figured it out within regular dsi/ds homebrew.
As for arm9 kexploits, ahem ntrcardhax

Well, it's not *completely* useless if someone finds a way to run homebrew in TWL mode: look up fwTool
 

ihaveahax

Well-Known Member
Member
Joined
Apr 20, 2015
Messages
6,069
Trophies
2
XP
7,804
Country
United States
But we can run homebrew in twl, with a flashcart. There's no need to go hunting for an exploit in some obscure outdated game that isn't even avalible anymore.
most flash carts run in DS (NTR) mode, not DSi (TWL) so you can't access all 16mb of memory like a DSi, can't use the faster processing power like a DSi, and also can't access the entire NAND (see: fwTool)
 
  • Like
Reactions: Sono and Seriel

Site & Scene News

Popular threads in this forum

General chit-chat
Help Users
    K3Nv2 @ K3Nv2: Did you pee in the water