Hacking From youtube exploit??

[tokidoki11]

Well, i downloaded youtube today, when i wanted to play a video, it displayed me an alert, then prompt me to restart my system...
I dont know why it happened though
I tried to retrace what i did, the error didn't occur

 

[Chaldron]

Honestly, I'm starting to feel anything about 4.5 is a lost cause. Gone are the days where devs rushed to every crash/bug - systems just aren't that exploitable, who knows.

It may sound pessimistic, sure, and if someone finds an exploit that'd be amazing, but it's not looking good for us. PS3 above 3.55 hasn't been hacked yet - and it released before the 3DS.

 

[justinkb]

Well, if a system uses proper crypto and doesn't run (with high privileges) software which can be exploited, then nothing software-based can be done about it. PS3 likely would never have been hacked, had Sony not fucked up with their crypto implementation in firmwares 3.55 and lower.

We don't exactly know how much effort Nintendo puts into vetting code for buffer overflows and the like (likely a whole lot for first party games and apps, but I'm unsure about 3rd party software). I do find it telling that the hole being abused for gateway is in essentially legacy software (3DS code interfacing with legacy, DS user supplied data), which may not have gotten the attention it should have gotten in preventing this kind of exploitation.

 

[profi200]

A crash alone doesn't mean anything. It is only usable, if it is reproducible and if it is possible to start a ROP-chain with it (XN prevents you from running code directly).

 

[Duo8]

A crash alone doesn't mean anything. It is only usable, if it is reproducible and if it is possible to start a ROP-chain with it (XN prevents you from running code directly).

Can that "XN" disabled somehow ?

 

[TakuyaZack]

The crash is reproducible here, i just load a video and choose another video, bam it crashes.

but it probably won`t be any use, since it is just a crash. but according to the method of making it crash, seems like it is out of memory (correct me here if im wrong)

 

[profi200]

Can that "XN" disabled somehow ?

If you have kernelmode code execution you can set all memory pages to r/w/x (read/write/execute). So, it is possible, yes.

 

[Foxi4]

The app crashes because it's crap - the error isn't necessarily exploitable and if it is, then it's likely going to give you usermode access since it occurs during loading additional data to an already running binary. It's not a system error per se, it's crappy programming, and that's completely different than the DS Profile NVRAM exploiting which is a system vulnerability.

 

[Chaosruler]

XN = Execute Never
meaning it will never execute unless kernel access code changes it to executeable, meaning that we can't load a firmware from an exploit in a memory around XN

The app crashes because it's crap - the error isn't necessarily exploitable and if it is, then it's likely going to give you usermode access since it occurs during loading additional data to an already running binary. It's not a system error per se, it's crappy programming, and that's completely different than the DS Profile NVRAM exploiting which is a system vulnerability.

a good usermode exploit might benefit us more than a crap kernel exploit, learning about the system can be done via usermode exploit too

 

[Foxi4]

a good usermode exploit might benefit us more than a crap kernel exploit, learning about the system can be done via usermode exploit too

Considering the fact that Youtube is unlikely to use a whole lot of resources, not to mention zero 3D rendering whatsoever and no access to the 3D rendering context, I'm pretty sure the feature set would be poor.

 

[CFallenleaf]

It may sound pessimistic, sure, and if someone finds an exploit that'd be amazing, but it's not looking good for us. PS3 above 3.55 hasn't been hacked yet - and it released before the 3DS.

PS3 doesn't need to be hacked anymore. You just need a Cobra ODE. They work on 4.50 OFW. you can do everything with Cobra that you can with CFW on ps3.

 

[the_randomizer]

Honestly, I'm starting to feel anything about 4.5 is a lost cause. Gone are the days where devs rushed to every crash/bug - systems just aren't that exploitable, who knows.

It may sound pessimistic, sure, and if someone finds an exploit that'd be amazing, but it's not looking good for us. PS3 above 3.55 hasn't been hacked yet - and it released before the 3DS.

So glad I decided to sell my 3DS. I too gave up the hope of seeing that happening, waiting around just wasn't worth it IMHO. I though the PS3 firmware could be downgraded, albeit with a USB dongle, at least I thought that was the only way to go back to 3.55.

 

[justinkb]

PS3 doesn't need to be hacked anymore. You just need a Cobra ODE. They work on 4.50 OFW. you can do everything with Cobra that you can with CFW on ps3.

Wrong. It doesn't support homebrew which utilizes certain syscalls.

 

[CFallenleaf]

Wrong. It doesn't support homebrew which utilizes certain syscalls.

Now you're wrong.

Q - [Falcon80] What other homebrew can run using the COBRA ODE ?

A - Homebrew apps which don't use CFW-specific syscalls should be supported.

Not ALL homebrew requires the CFW syscalls. some just use the systems syscalls. Get your facts straight before telling someone they are wrong. It can do everything CFW can do except run CFW specific syscalls. The fact is the MAJORITY of users of this thing and of CFW don't use it for homebrew.

 

[Foxi4]

Now you're wrong.

Q - [Falcon80] What other homebrew can run using the COBRA ODE ?

A - Homebrew apps which don't use CFW-specific syscalls should be supported.

Not ALL homebrew requires the CFW syscalls. some just use the systems syscalls. Get your facts straight before telling someone they are wrong. It can do everything CFW can do except run CFW specific syscalls. The fact is the MAJORITY of users of this thing and of CFW don't use it for homebrew.

...so he's right - it doesn't support Homebrew which uses certain syscalls - CFW syscalls.

 

[the_randomizer]

...so he's right - it doesn't support Homebrew which uses certain syscalls - CFW syscalls.

Then why does the FAQ answer say "apps that don't use CFW-specific syscalls"? That implies that there are some apps that don't.

 

[CFallenleaf]

No fox he was wrong, He said HOMEBREW he did not specify CFW specific homebrew. Like Random just pointed out there are homebrew that dont use CFW specific syscalls

 

[Foxi4]

Then why does the FAQ answer say "apps that don't use CFW-specific syscalls"? That implies that there are some apps that don't.

Which part of "certain" requires explaination? "Certain" implies that some don't work and some do.

No fox he was wrong, He said HOMEBREW he did not specify CFW specific homebrew. Like Random just pointed out there are homebrew that dont use CFW specific syscalls

I'm not "wrong", I just read what he actually typed, which was that homebrew apps which use certain syscalls don't work, not that homebrew in general doesn't.

 

[CFallenleaf]

Wrong. It doesn't support homebrew which utilizes certain syscalls.

Fox, dude, seriously. I never said you were wrong i said justin was. The point here now is that he said just said homebrew. He did not say CFW SPECIFIC HOMEBREW. Just homebrew, period.

 

[Luigi2012SM64DS]

I was expecting another OMG CRASH WE CAN HAX THE 4DS WIT DIS SHIT thrread.
Seriously, no. You cannot hack the 3DS with a crash.