Toggle sidebar

Homebrew (V*) HAX

  • Thread starter Thread starter kje123
  • Start date Start date
  • Views Views 26,572
  • Replies Replies 183
  • Likes Likes 16
TFW your game gets taken off the eShop because someone on GBATemp found an exploit in it.
vvvvvv.png
 
  • Like
Reactions: Erikku, Quantumcat, dronesplitter and 2 others
PF2M said:
It's kinda sad how they had to take down VVVVVV just because of a secondary homebrew exploit, something that isn't even useful to us anymore unless you're having trouble using Smashhax to downgrade and need a secondary exploit too. VVVVVV is actually a really good game, one of the first I bought when I got my O3DS. And now, nobody will be able to experience it until they fix the glitch. :/
Click to expand...

Well it is still available for download using DTK/FunKeyCia. Not to mention the usual sources.
 
well games made by small devs are more likey to have exploits in them if a kid made a game and it was good enough for the eshop it would still probably have bugs in it. v6 is not made by a kid but the dev seems to be a small indie dev

--------------------- MERGED ---------------------------

any ways what if the maker of vvvvvv does not know how to patch exploits his game will not be on the eshop anymore i mean its kinda a bug but you need to know how it works to fix it and the maker of vvvvvv did not make the exploit
 
Last edited by hacksn5s4,
hacksn5s4 said:
any ways what if the maker of vvvvvv does not know how to patch exploits his game will not be on the eshop anymore i mean its kinda a bug but you need to know how it works to fix it and the maker of vvvvvv did not make the exploit
Click to expand...

It took the Ironfall team a little more than three months from the day the exploit was announced to get the patched game re-uploaded to the eShop. Also, according to ShinyQuagsire it's a pretty easy fix so we'll most likely see this back up on the eShop at some point.

I'm wondering if Nintendo intends to release a fix for VVVVVV which would require you to update the game before it can be played like they did with Ironfall.

Either way Ocarina of Time is still on the eShop and is only $20 (in the US), so that'll always be an option for people looking for this type of exploit.
 
Quantumcat said:
Maybe ShinyQuag should write a letter to Terry detailing how to patch the exploit so it can be readded to the shop (or maybe not, as they haven't taken it from the Eur eShop yet)
Click to expand...
The writeup should be enough for Terry to know what to fix, I don't plan on exploiting VVVVVV twice (that'd just be mean at this point). Basically just add size-checking arguments to the XML parsing, easy as that.
 
  • Like
Reactions: gnmmarechal
shinyquagsire23 said:
The writeup should be enough for Terry to know what to fix, I don't plan on exploiting VVVVVV twice (that'd just be mean at this point). Basically just add size-checking arguments to the XML parsing, easy as that.
Click to expand...
Ah OK cool, I hope he does fix it then, V6 is such a great game, shame for people to miss out on it! It would be interesting if all the publicity made people hear about it and then buy it after the patch (I've never seen the game advertised before, I only heard about it from friends). And then Terry deliberately puts vulnerabilities in his future games hoping for the same effect :-p
 
I've been pondering if the 3DS system's own Save-Data Backup/Restore functionality could possibly be used to install an exploited gamesave.

Using two 3DS systems that both have VVVVVV installed, I tried this:
  1. Install V*Hax on primary system
  2. Backup VVVVVV's game save from primary system using Save-Data Backup
  3. Copy .sav file from primary system's SD card, located in sdmc:\Nintendo 3DS\(ID)\(ID)\backup\000\titleID\00000001.sav
    1. Note that 000 may be 001, 002, corresponding to the Save-Data backup slot used. You get up to 30 slots.
    2. For VVVVVV, the titleID is 0004000000096100
  4. Backup VVVVVV's game save from secondary system using Save-Data Backup
  5. On the secondary system's SD card, replace the .sav file located in the same Nintendo 3DS backup folder, with the exploited .sav from the primary system
  6. On the secondary system, open the System Settings, under Data Management perform a save data restore for VVVVVV
I did this and it said the save data was successfully restored, however upon loading VVVVVV on the secondary system, this just created new save data.
Chances are, the Save-Data Backup process is encrypting the save to only be restorable to the system that backed it up.
So in other words it didn't work, I couldn't back up an exploited save from one system, and restore it to another system.

This makes me wonder if you couldn't install the exploit another way.

What if you could perform the Save-Data Backup on the system to be exploited, retrieve the .sav file, decrypt it using a PC tool or at least a second homebrew enabled 3DS. Then modify the decrypted save with the exploit, re-encrypt the save file and put it in the backup folder.
Perform a Save-Data restore, and hopefully install the exploit that way.

What do you think, is there a chance this could work?
It would mean V*Hax could turn from a secondary exploit to a primary if you can manage this with just a PC.
 
RupeeClock said:
I've been pondering if the 3DS system's own Save-Data Backup/Restore functionality could possibly be used to install an exploited gamesave.

Using two 3DS systems that both have VVVVVV installed, I tried this:
  1. Install V*Hax on primary system
  2. Backup VVVVVV's game save from primary system using Save-Data Backup
  3. Copy .sav file from primary system's SD card, located in sdmc:\Nintendo 3DS\(ID)\(ID)\backup\000\titleID\00000001.sav
    1. Note that 000 may be 001, 002, corresponding to the Save-Data backup slot used. You get up to 30 slots.
    2. For VVVVVV, the titleID is 0004000000096100
  4. Backup VVVVVV's game save from secondary system using Save-Data Backup
  5. On the secondary system's SD card, replace the .sav file located in the same Nintendo 3DS backup folder, with the exploited .sav from the primary system
  6. On the secondary system, open the System Settings, under Data Management perform a save data restore for VVVVVV
I did this and it said the save data was successfully restored, however upon loading VVVVVV on the secondary system, this just created new save data.
Chances are, the Save-Data Backup process is encrypting the save to only be restorable to the system that backed it up.
So in other words it didn't work, I couldn't back up an exploited save from one system, and restore it to another system.

This makes me wonder if you couldn't install the exploit another way.

What if you could perform the Save-Data Backup on the system to be exploited, retrieve the .sav file, decrypt it using a PC tool or at least a second homebrew enabled 3DS. Then modify the decrypted save with the exploit, re-encrypt the save file and put it in the backup folder.
Perform a Save-Data restore, and hopefully install the exploit that way.

What do you think, is there a chance this could work?
It would mean V*Hax could turn from a secondary exploit to a primary if you can manage this with just a PC.
Click to expand...
You need arm9 access to get the per console sd key (movable.sed). If you actually have that kind of access, primary/secondary entrypoints are of little concern.
 
  • Like
Reactions: RupeeClock and Arubaro
zoogie said:
You need arm9 access to get the per console sd key (movable.sed). If you actually have that kind of access, primary/secondary entrypoints are of little concern.
Click to expand...

Good point then, I had to figure there was a reason save-injection for eShop titles like this had to be done on the 3DS system itself.

Man, if a flaw was discovered in the system's Save-Data backup functionality though, it would make homebrew exploits much easier and cheaper.
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Help on 3DS prices...

Homebrew app Emulator  [Release] 3DS-CLI - Run a real RISC-V Linux environment on the Nintendo 3DS

Hardware  2 Broken 3DSes, need help

Website for finding alternative games for 3DS

Homebrew Homebrew app  [Release] GridLauncher Rosalina

Homebrew  My Secret World DS: is there a way to bypass the password lock?

please help, wont boot

Hardware  I Have 2 THQ Dev Kit 3DSes (Panda), Need Help On Preserving What’s Inside