Hacking Question So what's up with Fail0verflow?

[The0919]

So I am kinda late to the switch hacking scene, and recently discovered that Fail0verflow is planning to release a coldboot exploit. Is that really happing? If they have a coldboot exploit, and why haven't they released it yet!?

 

[Draxzelex]

Uh...they already have and its the same coldboot exploit that TX and ReSwitched were holding onto but it was leaked by an anonymous third party.

Here is a link to f0f's write-up of the same exploit we have all been using for the past 4 months or so: https://fail0verflow.com/blog/2018/shofel2/

 

[The0919]

Ah ok. From their Twitter videos it seemed like an exploit that did not require delivering a payload externally.

 

[garyopa]

Ah ok. From their Twitter videos it seemed like an exploit that did not require delivering a payload externally.

Below 3.0 (ie. 2.1 series) its possible, but that info has not been released!

 

[zoogie]

Below 3.0 (ie. 2.1 series) its possible, but that info has not been released!

Wonder why they wouldn't release it if it's been patched.
Seems f0f would prefer putting a dent in the piracy dongle business.

 

[garyopa]

Wonder why they wouldn't release it if it's been patched.
Seems f0f would prefer putting a dent in the piracy dongle business.

Whom said it was 'patched'... -- There is infact about almost dozen 'bugs/exploits' in the original T210 bootrom.

Officially, the only one 'patched' so far, is the 'usb payload length buffer overflow' with the v4.1.0 iPatches added in the factory (this so-called 'unhackable' Switch'es now appearing in stores).

The rest are still floating around, is just that on higher 'firmwares' getting access to 'exploit' them is higher, like no web browser, or patched apps, or patched games, so getting them to launch is not easier the higher you go up in firmware chain, why alot of people are still holding out that someday, a group will leak other 'exploits' that will allow like perm. custom firmware, or dongle-less boot-up, etc.

But most groups are hoping that few of these 'bugs' if not disclosed or leaked, will slip thru the cracks and make it into the newer T214 bootrom (aka) mariko, which we have let to see Nintendo using it, even tho starting with firmware v5.x series they added support for next-gen of X1 chips.

 

[machinoman]

But most groups are hoping that few of these 'bugs' if not disclosed or leaked, will slip thru the cracks and make it into the newer T214 bootrom (aka) mariko, which we have let to see Nintendo using it, even tho starting with firmware v5.x series they added support for next-gen of X1 chips.

sounds good to me. we all have exploitable switches, but if the devs blew all their zero days future switch owners would not be able to join us in our little club.