Hacking Crash WiiU via browser. Exploitable?

WulfyStylez · Sep 3, 2014

robcrazee said:
Ok i have sat on my hands long enough in many scenes but i feel that something should be shared here now about what exactly is being worked on (Sorry just keep it simple so not to invite nintendo to patch it). I understand coding and have been a doing it for many years and understand that this exploit coupled with coding to the wii / windows mashup type architecture takes time but someone must have got even a "hello world" to work within the Wii U architecture

Otherwise this is "failoverflow / 4 horsemen / (Insert drama here)" all over again. I respect all the people who are working on this but there is only so long this all can go on for. Now chadders/mrbean have an kernel exploit are they actually going to share it with the current developers??? or just have his moment in the sun with exploits for one game?

Im not after HAX or backups just being able to play emulators and have fun user created homebrew (Much like with the PSP scene back in the day)

Im not trying to start any trouble / flames at all just would like to know how far we actually are along to running our own code

/whoops i typed a vague synopsis of our kernel exploit dev before i saw what thread this is derp
Chadderz' exploit will only be released if they feel the need to release some fancy, 100% finished modding project before anyone else releases something. That could be a loooong way off and we'll probably be done by then. Also their exploit will be packaged and made to do exactly one thing (modify MK8 in a very controlled fashion).

This potential exploit with the browser, the focus of this thread, is just another way to launch a userspace exploit. I don't think anyone's more than glanced at it because it makes a lot more sense to keep working on kernel exploits.

Ciapa · Sep 4, 2014

This thing could help with working on a Kernel Exploit since wie could look into the newest Firmware. And currently Tester cIOS and me are talking about how this could be done(based on some information already collected). And if this thing works AS an Exploit, we could probably gain Kernel Access, we have a neat idea for it.
But this is going to be discussed either in the secured place on our board, or completely private over Teamspeak.

Deleted member 342493 · Sep 4, 2014

Thirty3Three said:
I agree. How far in are we? Is it exploitable? I'd rather not stick to offline if I don't have to.

I don't know nothing in python commands or C programming, but trust me, if I know theses, I will spend all my day in the Wii U, but I'm a noob so...

WulfyStylez · Sep 4, 2014

Ciapa said:
This thing could help with working on a Kernel Exploit since wie could look into the newest Firmware. And currently Tester cIOS and me are talking about how this could be done(based on some information already collected). And if this thing works AS an Exploit, we could probably gain Kernel Access, we have a neat idea for it.
But this is going to be discussed either in the secured place on our board, or completely private over Teamspeak.

The new firmware has a webkit patch and some tiny OS patch. There's nothing exciting on 5.1.1-5.1.2 that would help us finish developing our already-existing exploit. Exploiting this userland crash won't magically give us kernel access either.
Good luck to you guys with figuring out another userland exploit with it, though. It'll definitely be needed eventually.

Enigma Hall · Sep 4, 2014

Goku Junior said:
I don't know nothing in python commands or C programming, but trust me, if I know theses, I will spend all my day in the Wii U, but I'm a noob so...

Lets do it. i know Dbase III.

¬_¬.

WulfyStylez · Sep 4, 2014

Goku Junior said:
I don't know nothing in python commands or C programming, but trust me, if I know theses, I will spend all my day in the Wii U, but I'm a noob so...

You'd need knowledge of PPC assembly to really get anywhere with exploit development.

lionsfan420 · Sep 4, 2014

I have my launch day WiiU 32gb on 310U fw. My question would be 1; If this Fw is too low,
should I just go ahead and update to 510? or is there a repository that lets me download FW's to where I could install manually
like a FW a little lower?

Deleted member 342493 · Sep 4, 2014

lionsfan420 said:
I have my launch day WiiU 32gb on 310U fw. My question would be 1; If this Fw is too low,
should I just go ahead and update to 510? or is there a repository that lets me download FW's to where I could install manually
like a FW a little lower?

I recommend you updating using Mario Kart 8 disc (without internet), so you will get the better firmware of Wii U Hacking, it supports a know Power exploit that was created by Chadderz.

Maq47 · Sep 4, 2014

lionsfan420 said:
I have my launch day WiiU 32gb on 310U fw. My question would be 1; If this Fw is too low,
should I just go ahead and update to 510? or is there a repository that lets me download FW's to where I could install manually
like a FW a little lower?

Get Mario Kart 8, and let the disc update you.

Edit:

'd

EmceeKerser · Sep 5, 2014

Goku Junior said:
I recommend you updating using Mario Kart 8 disc (without internet), so you will get the better firmware of Wii U Hacking, it supports a know Power exploit that was created by Chadderz.

Its an unreleased exploit, so it would no doubt work on all firmwares. Just update to the latest one, it doesnt matter at this stage

Enigma Hall · Sep 5, 2014

EmceeKerser said:
Its an unreleased exploit, so it would no doubt work on all firmwares. Just update to the latest one, it doesnt matter at this stage

Or wait to someone with more Message Count confirm it.
I´m Ok with my MK8 firmware without silent updates.

EmceeKerser · Sep 5, 2014

Enigma Hall said:
Or wait to someone with more Message Count confirm it.

Marionumber1 said:
5.1.1 is still using an outdated version of WebKit, which means that Nintendo only patched the specific bug we used in the previous browser exploit. The bug we found surely isn't the only exploitable bug in WebKit. There are bound to more, especially on an old version. Of course, if you want to be completely safe, you can stay on an old version (which is probably why crediar said that), but the odds are good that we'll have another browser exploit. At the same time, a kernel exploit (when we get one) may make it possible to spoof the system software version on older versions.

NWPlayer123 said:
I would say just update. By the time we have good homebrew/a version spoofer/whatever else you could imagine, someone will have hacked the console wide open and found a game-based exploit like smea has, that hopefully will work on most versions. It's just that Webkit is the most reliable attack vector currently, which limits things a lot, along with the fact that we can't even load rpx files or really any files yet. There's no simple way to make homebrew in the first place.

Low post count =/= idiot

rumblpak · Sep 5, 2014

EmceeKerser said:
Its an unreleased exploit, so it would no doubt work on all firmwares. Just update to the latest one, it doesnt matter at this stage

Just because there are unreleased exploits, doesn't mean they don't use closed entry points. Upgrading beyond 5.1.0 is ill-advised right now, and telling people to do is, as well.

WulfyStylez · Sep 5, 2014

rumblpak said:
Just because there are unreleased exploits, doesn't mean they don't use closed entry points. Upgrading beyond 5.1.0 is ill-advised right now, and telling people to do is, as well.

And this is why we don't give lots of status updates. Though 5.1.2 is still safe for any exploit and I don't think anything's been patched.

Thirty3Three · Sep 5, 2014

WulfyStylez said:
And this is why we don't give lots of status updates. Though 5.1.2 is still safe for any exploit and I don't think anything's been patched.

So, talk to me like I'm 5. This vulnerability can be used for an exploit, as far as you can tell? Or assume?

filfat · Sep 5, 2014

WulfyStylez said:
You'd need knowledge of PPC assembly to really get anywhere with exploit development.

Yeah that's why I'm slamming my head into the computer, hopefully some PPC instructions from the instruction set will stick XD

lionsfan420 · Sep 5, 2014

I am going to leave my WiiU on FW 310U! Cause when the time comes for kernel exploit, being on a low FW,
I'll have more options to explore...

NWPlayer123 · Sep 5, 2014

lionsfan420 said:
I am going to leave my WiiU on FW 310U! Cause when the time comes for kernel exploit, being on a low FW,
I'll have more options to explore...

We don't even have support for 3.1.0, and we don't plan to add it either, you're on your own if you want to go that low.

WulfyStylez · Sep 5, 2014

Thirty3Three said:
So, talk to me like I'm 5. This vulnerability can be used for an exploit, as far as you can tell? Or assume?

There's no way to say yet, we'll just have to wait for somebody to debug it first.

warnings · Sep 6, 2014

There is obviously "no-to-very low" interest in this machine. Had a hole like this been discovered on xbone or ps4...be on like donkey kong.
Even if it was a short lived exploit, good proof of concept, good fuck u to the man.

Hacking Crash WiiU via browser. Exploitable?

SALT/Bemani Princess

New Member

Well-Known Member

SALT/Bemani Princess

Well-Known Member

SALT/Bemani Princess

Member

Well-Known Member

Lord of Pyro

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

SALT/Bemani Princess

Musician Member

Well-Known Member

Member

Well-Known Member

SALT/Bemani Princess

Well-Known Member

Similar threads

Popular threads in this forum