[Unconfirmed] ARM11 Kernel Vulnerability under 10.0.0-X

[lemanuel]

Still hoping to see some relevant post about the topic other than the common and useless "Can't wait for this to work for me even tho I have no idea what it does"...

Well... the title of the thread doesn't help. It's too definitive/final.

 

[chyyran]

Glad I stuck with 9.9.x on my N3DS. Best of luck to getting this working.

 

[Jwiz33]

Good thing I didn't update my 9.9 o3DS.

 

[The_Meistro]

Yes! Wow.... I'm so happy I told myself to stay on 9.9!

GOSH DANG IT!!!
I SWEAR I UPDATED LASTNIGHT I HATE MYSELF!!!

 

[ric.]

>tfw still on 9.9
Feels good. Hopefully something good comes out of this. Godspeed, 173210. Godspeed.

 

[Neru]

Still on 9.4 N3DS, YEEEESSSSSSSSSS!!!!!

 

[DogParty]

Could someone explain why this wouldnt work on 10.0+? It might be in the OP but looking at that stuff makes my normie head hurt

This won't work on 10.0+ because, simply, Nintendo already patched the vuln.

 

[TheCruel]

I'm not seeing anything exploitable here. But keep at it.

 

[OctopusRift]

I'm not seeing anything exploitable here. But keep at it.

What. In the POC?! svcCreateThread bro... check the vulns on 3dbrew.

--------------------- MERGED ---------------------------

Could someone explain why this wouldnt work on 10.0+? It might be in the OP but looking at that stuff makes my normie head hurt

REEEEEEEEEEEEEEEEEE

 

[The_Meistro]

What. In the POC?! svcCreateThread bro... check the vulns on 3dbrew.

--------------------- MERGED ---------------------------


REEEEEEEEEEEEEEEEEE

Thats it! Anyone want to trade me a 9.9 or below 3DS for one on 10.0x?

 

[teampleb]

What. In the POC?! svcCreateThread bro... check the vulns on 3dbrew.

--------------------- MERGED ---------------------------


REEEEEEEEEEEEEEEEEE

What? We can create a new thread without kernel access.

 

[The_Meistro]

What? Can can create a new thread without kernel access.

can can?

 

[robot56]

It can result in kernel memory corruption, and eventually kernel code execution.

How exactly do you plan on obtaining code execution? That would require another vulnerability allowing you to write to executable memory if I'm not mistaken.

 

[Jwiz33]

Thats it! Anyone want to trade me a 9.9 or below 3DS for one on 10.0x?

What color is it?
jklolno

 

[teampleb]

can can?

Refresh.

 

[Jwiz33]

How exactly do you plan on obtaining code execution? That would require another vulnerability allowing you to write to executable memory if I'm not mistaken.

I believe @MassExplosion213 had an exploit for arm11 kernel code execution, he just needed a flaw.

 

[Intronaut]

@MassExplosion213

 

[The_Meistro]

@MassExplosion213 I SUMMON YOU!!!!

It would also be cool if you would buy my 10.0x 3ds...

--------------------- MERGED ---------------------------

Hey everyone Check out my thread!!!



http://gbatemp.net/threads/gbatemp-idea.398956/

I need everyone to respond!

 

[OctopusRift]

@MassExplosion213 I SUMMON YOU!!!!

It would also be cool if you would buy my 10.0x 3ds...

--------------------- MERGED ---------------------------

Hey everyone Check out my thread!!!



http://gbatemp.net/threads/gbatemp-idea.398956/

I need everyone to respond!

@MassExplosion213

I believe @MassExplosion213 had an exploit for arm11 kernel code execution, he just needed a flaw.

hes out right now. dont expect much.

 

[Jwiz33]

Not trying to turn this thread into a meme caps lock EoF-type discussion, but..
@MassExplosion213 @MassExplosion213 @MassExplosion213 @MassExplosion213 !!!!