Hacking 5.5.0 progress

C

ClockWorK

Well-Known Member
Member
Level 2
Joined
May 10, 2009
Messages
151
Trophies
0
XP
173
Country
United States
Please don't let me be the only person that is actually looking into the potential glibc exploit. I assume there is someone on this site that is more familiar with all of the required components and could test all of this much faster than I could. Nonetheless, I will continue to play.

I set up Apache on a local machine, and I'm pretty sure I've got it running the python script from the git proof-of-concept code. I think my next step is to call wget (I think, because internally it uses the glibc function getaddrinfo) from a linux machine (perhaps wii u linux if that's still a thing?) and see what happens when it tries to access the apache server. If the client crashes or reports a segmentation fault, that would indicate the exploit at least has potential.

I'm unclear if the server can be a simple http server or if it needs to be an actual DNS type server. I'm neither a web developer nor a "network guy".

Also, if the WiiU binaries were not compiled with glibc, I don't expect any of this to work.
 
  • Like
Reactions: street, Chuardo, Piluvr and 1 other person
Piluvr

Piluvr

Yeeeet
Member
Level 5
Joined
Jul 27, 2015
Messages
655
Trophies
0
Location
Behind you
XP
730
Country
United States
ClockWorK said:
Please don't let me be the only person that is actually looking into the potential glibc exploit. I assume there is someone on this site that is more familiar with all of the required components and could test all of this much faster than I could. Nonetheless, I will continue to play.

I set up Apache on a local machine, and I'm pretty sure I've got it running the python script from the git proof-of-concept code. I think my next step is to call wget (I think, because internally it uses the glibc function getaddrinfo) from a linux machine (perhaps wii u linux if that's still a thing?) and see what happens when it tries to access the apache server. If the client crashes or reports a segmentation fault, that would indicate the exploit at least has potential.

I'm unclear if the server can be a simple http server or if it needs to be an actual DNS type server. I'm neither a web developer nor a "network guy".

Also, if the WiiU binaries were not compiled with glibc, I don't expect any of this to work.
Click to expand...
Did it do anything?
 
  • Like
Reactions: street
O

Ompet

Active Member
Newcomer
Level 2
Joined
Jan 1, 2010
Messages
28
Trophies
0
XP
151
Country
ClockWorK said:
Please don't let me be the only person that is actually looking into the potential glibc exploit. I assume there is someone on this site that is more familiar with all of the required components and could test all of this much faster than I could. Nonetheless, I will continue to play.

I set up Apache on a local machine, and I'm pretty sure I've got it running the python script from the git proof-of-concept code. I think my next step is to call wget (I think, because internally it uses the glibc function getaddrinfo) from a linux machine (perhaps wii u linux if that's still a thing?) and see what happens when it tries to access the apache server. If the client crashes or reports a segmentation fault, that would indicate the exploit at least has potential.

I'm unclear if the server can be a simple http server or if it needs to be an actual DNS type server. I'm neither a web developer nor a "network guy".

Also, if the WiiU binaries were not compiled with glibc, I don't expect any of this to work.
Click to expand...

I do not have the time to dig into the exploit-hunting, but after a small time of googling I got the feeling that the Wii at least were compiled with glibc, so maybe you can use it through the WiiU's Wii-compability mode. Might at least be worth a shot (maybe you can break out of the Wii-jail with this exploit, and be able to run code to access the WiiU).
 
C

ClockWorK

Well-Known Member
Member
Level 2
Joined
May 10, 2009
Messages
151
Trophies
0
XP
173
Country
United States
Gonna work on it tonight and this weekend. But like I said, there are people more experienced than I am that could probably test this stuff much faster.

Just the fact that nobody has shot the idea down yet is encouraging though.
 
thekarter104

thekarter104

Well-Known Member
Member
Level 12
Joined
Mar 28, 2013
Messages
1,985
Trophies
1
XP
3,007
Country
United States
Ok so, I have a question about injecting VCs on 5.5.0/5.5.1 in just userland.
Remember when the 3DS had injects via the browser? You still had to have a ROM file on the SD card, which userland can't, so my question is:

Is it possible to do the same way but then load/inject the ROM over the network?

For those who not know about this:
In the 3DS early hacking days, when you play a VC game in your Home Menu and have a ROM file on the SD card, you press the HOME button while in the game and access the browser and go to an exploit page.
When it's done, you will go back to the Home Menu, but upon resetting the game, it will load your ROM you have on the SD card.

On the Wii U it would be over the network I guess, if possible.
 
S

SYNYST3R1

Active Member
Newcomer
Level 3
Joined
Feb 10, 2013
Messages
27
Trophies
1
Age
33
XP
250
Country
United States
ClockWorK said:
Please don't let me be the only person that is actually looking into the potential glibc exploit. I assume there is someone on this site that is more familiar with all of the required components and could test all of this much faster than I could. Nonetheless, I will continue to play.
Click to expand...

Do you think this idea should be made into a separate thread so more people see? I have a feeling devs avoid this thread like the plague
 
  • Like
Reactions: Baphomet and Piluvr
D

Deleted User

Guest
soniczx123 said:
Wasn't it reported about a week ago that porting to 5.3.2 was completed and only a few latte/hardware register were to be documented before packing it all up for release?
Click to expand...
I think so. But that's for 5.3.2 and not 5.5.0. I think there was some more work to be done on 5.5 before it was all to be released.
 
D

Deleted User

Guest
soniczx123 said:
I think 5.5 was the first to be completed. Where else could he have ported it from?
Click to expand...
You have a point. I guess the devs still have a few bugs to iron out in the exploit? Most likely that... and code clean-up. People will definitely want to take a look at the source when it all releases.
 
soniczx123

soniczx123

Well-Known Member
Member
Level 4
Joined
Jul 24, 2015
Messages
589
Trophies
0
Age
26
XP
430
Country
Possibly. Hopefully it get's released before March, so that this thread doesn't become a shitfest like his other thread when February hit.
 
D

Deleted User

Guest
I do have a good feeling about March. I will definitely bitch off if it's not released by at least half-way through April...
 

Site & Scene News

Go to forum More news

Popular threads in this forum

A really, REALLY old browser exploit (for 5.3.2)?

Gaming  Online services for the 3DS and Wii U have been shutdown. Here is how to get back online!

Hacking Hardware  Wii U No Display (Logs dumped)

Hacking Gaming  Xenoblade Chronicles X - Lifeline and Enhancement Mod

Homebrew  Huevo's Vault | Wii U Themes

Super Mario Maker Save Collection (All Event and Staff Courses Preserved, 3DS Mario Challenge Port, and More)

Watch videos on Wii U, offline, saved on SD?

Can you hack your wii u with something other than sd card

General chit-chat
Help Users
  • No one is chatting at the moment.
    AncientBoi @ AncientBoi: 🫂 +1