Hacking PSA: Reports of Fusee gelee patched units in the wild

  • Thread starter Deleted-442439
  • Start date
  • Views 85,178
  • Replies 315
  • Likes 10
tecfreak

tecfreak

Well-Known Member
Member
Level 4
Joined
Apr 24, 2018
Messages
186
Trophies
0
Location
Berlin
XP
439
Country
Germany
Clydefrosch said:
am i the only one slightly confused
Click to expand...
Apparently. You can't patch it after it left the factory but you can patch it during the manufacturing process.

--------------------- MERGED ---------------------------

Draxzelex said:
Realistically, Nintendo can patch this exploit on all current Switch units
Click to expand...
I dont think that this is possible. Once alle the involved fuses are burnt, no one can make changes to the bootROM, not even Nintendo or Nvidia.
 
CreAtor135

CreAtor135

GBATemp's #1 Nothing
Member
Level 8
Joined
Jan 10, 2015
Messages
814
Trophies
0
Location
Ikeb, Ukuro
XP
1,499
Country
United States
Despite this however, Team Xecuter has released a video showcasing their SX Pro functioning properly on said hardware revision.​



TX has voiced that they would like the community's help in narrowing down what the actual problem is with these hardware units.

Team Xecuter said:
Today, we got sent a video showing that SX PRO is working fine on one of these so-called 'problem consoles', the mainstream media and other sites are working that Nintendo patched the f-g exploit, as such RCM and Jigs don't work anymore on these models 'HAC-S-JXE-C3' that are shipping from factory mainly in asia/hk area with v4.1.0 firwmare with iPatches that block the usage of Jig to get into RCM mode and to send up a payload.

Team-Xecuter has already bought 5 of these problem consoles, and all are working fine, but they need the community out there with SX PRO to report on the issues directly to them via their 'contact us' page, not with 'other ways' of loading payloads, but using SX PRO exclusively itself, with latest SX OS v1.3, and depending on the info you give them they will be in touch asking for more details and are offering to send the person money that owns a 'problem console' or a compatible console plus cost for shipping & handling to us, so they can collect it and properly diagnose and fix all the issues.
Click to expand...
:arrow: Source
 
  • Like
Reactions: Sillybunnie and Deleted User
V

V-Temp

Well-Known Member
Member
Level 8
Joined
Jul 20, 2017
Messages
1,227
Trophies
0
Age
34
XP
1,342
Country
United States
Draxzelex said:
RIP. Maybe Nintendo could pull some wizardry and transfer all of your data into a patched Switch unit :D
Click to expand...

They'd just replace the entire unit for anything they got if they were that adamant. If you send it in for repair, for example, you may not get the unit back.
 
_Shebang

_Shebang

Well-Known Member
Newcomer
Level 2
Joined
Dec 14, 2016
Messages
66
Trophies
0
Age
27
XP
207
Country
Canada
CreAtor135 said:
Recently, it has been speculated that a factory-level Nintendo Switch hardware revision was the cause of a coldboot exploit, Fusee Gelee, being patched.

Despite this however, Team Xecuter has released a video showcasing their SX Pro functioning properly on said hardware revision.​



TX has voiced that they would like the community's help in narrowing down what the actual problem is with these hardware units.

:arrow: Source
Click to expand...


This isn't the correct 'revision', note the serial number. All affected units so far have been of the form XAJ7004XXXXXX. Even then, one user has one starting with XAJ700418 and his boots payloads just fine.
 
CreAtor135

CreAtor135

GBATemp's #1 Nothing
Member
Level 8
Joined
Jan 10, 2015
Messages
814
Trophies
0
Location
Ikeb, Ukuro
XP
1,499
Country
United States
_Shebang said:
This isn't the correct 'revision', note the serial number. All affected units so far have been of the form XAJ7004XXXXXX. Even then, one user has one starting with XAJ700418 and his boots payloads just fine.
Click to expand...
i made that thread like two hours ago, shortly after the information released. It was in "User Submitted News" and was moved here, though admittedly at the time I hadn't known about the margin of error from the reports that had been out at the time. That being said, the current results are not to say that TX's post was made with malice in mind, as there just isn't enough to go off of when determining what a revision unit is and isn't.
 
  • Like
Reactions: comput3rus3r
bitteorca

bitteorca

Member
Newcomer
Level 1
Joined
Jul 12, 2018
Messages
21
Trophies
0
Age
28
XP
100
Country
United States
I purchased a Switch with the serial number XAW700183***** and I can confirm that payload injection doesn't work.

Steps to recreate:
1. Copied the Switch Starterkit root files to the root of my FAT32 SDcard from my PC
2. Inserted SDcard into Switch, then booted into RCM mode with paperclip jig
3. Plugged Switch into PC, used Zandig to install the libusbK drivers, confirmed APX came up as a device in device manager
4. Tried to run the NX bootkit 64-bit executable, the Switch screen remains black and the cmd prompt window displayed some code then counted down from 5 seconds to close the window

Is it possible that my USB-C cable (came with my phone) is the culprit here or is it likely that I have a patched Switch?
 
gamesquest1

gamesquest1

Nabnut
Former Staff
Level 22
Joined
Sep 23, 2013
Messages
15,153
Trophies
2
XP
12,247
bitteorca said:
I purchased a Switch with the serial number XAW700183***** and I can confirm that payload injection doesn't work.

Steps to recreate:
1. Copied the Switch Starterkit root files to the root of my FAT32 SDcard from my PC
2. Inserted SDcard into Switch, then booted into RCM mode with paperclip jig
3. Plugged Switch into PC, used Zandig to install the libusbK drivers, confirmed APX came up as a device in device manager
4. Tried to run the NX bootkit 64-bit executable, the Switch screen remains black and the cmd prompt window displayed some code then counted down from 5 seconds to close the window

Is it possible that my USB-C cable (came with my phone) is the culprit here or is it likely that I have a patched Switch?
Click to expand...
seems to be a low serial, whats the date code on the switch?

might be worth trying a different USB port/pc, unfortunately I feel like anyone having troubles with setup at this point are going to be "arrrgh its a patched switch!!!!"
 
Last edited by gamesquest1,
  • Like
Reactions: RAGER and gnilwob
Draxzelex

Draxzelex

Well-Known Member
Member
Level 23
Joined
Aug 6, 2017
Messages
19,011
Trophies
2
Age
29
Location
New York City
XP
13,378
Country
United States
bitteorca said:
I purchased a Switch with the serial number XAW700183***** and I can confirm that payload injection doesn't work.

Steps to recreate:
1. Copied the Switch Starterkit root files to the root of my FAT32 SDcard from my PC
2. Inserted SDcard into Switch, then booted into RCM mode with paperclip jig
3. Plugged Switch into PC, used Zandig to install the libusbK drivers, confirmed APX came up as a device in device manager
4. Tried to run the NX bootkit 64-bit executable, the Switch screen remains black and the cmd prompt window displayed some code then counted down from 5 seconds to close the window

Is it possible that my USB-C cable (came with my phone) is the culprit here or is it likely that I have a patched Switch?
Click to expand...
If you had some video documenting the process, it would be easier to critique whether you are doing everything right or if you messed up on one or more of the steps.

Also, I don't believe the USB cable is the culprit here as your PC was able to detect the Switch as an APX device when it was plugged in.
 
bitteorca

bitteorca

Member
Newcomer
Level 1
Joined
Jul 12, 2018
Messages
21
Trophies
0
Age
28
XP
100
Country
United States
gamesquest1 said:
seems to be a low serial, whats the date code on the switch?

might be worth trying a different USB port/pc, unfortunately I feel like anyone having troubles with setup at this point are going to be "arrrgh its a patched switch!!!!"
Click to expand...
Sorry where do I find the date code? I purchased it today

And I just tried again on my other laptop and the same thing happened
 
G

gnilwob

Well-Known Member
Member
Level 5
Joined
Mar 16, 2008
Messages
204
Trophies
1
XP
644
Country
Hong Kong
bitteorca said:
Sorry where do I find the date code? I purchased it today

And I just tried again on my other laptop and the same thing happened
Click to expand...
Can you try tegrarcmsmash with biskeydump ?
Go to https://switchtools.sshnuke.net/ to download the files.
And run this command when you connect your RCM switch to your pc.

TegraRcmSmash.exe -w biskeydump.bin BOOT:0x0

Then capture the output on the command line windows and post it here please.

It should look like this:
2018-07-13_4-48-11.png
 
Last edited by gnilwob,
stephrk398

stephrk398

Well-Known Member
Member
Level 8
Joined
May 29, 2018
Messages
544
Trophies
0
XP
1,421
Country
United States
jakkal said:
ive had my extra one since launch
Click to expand...

You going open your next extra? That's my dilemma, I want to sell it as New but want to be absolutely sure it can launch payloads. =/
bitteorca said:
I purchased a Switch with the serial number XAW700183***** and I can confirm that payload injection doesn't work.

Steps to recreate:
1. Copied the Switch Starterkit root files to the root of my FAT32 SDcard from my PC
2. Inserted SDcard into Switch, then booted into RCM mode with paperclip jig
3. Plugged Switch into PC, used Zandig to install the libusbK drivers, confirmed APX came up as a device in device manager
4. Tried to run the NX bootkit 64-bit executable, the Switch screen remains black and the cmd prompt window displayed some code then counted down from 5 seconds to close the window

Is it possible that my USB-C cable (came with my phone) is the culprit here or is it likely that I have a patched Switch?
Click to expand...

Went from "confirmed" to "likely" in the same post. Guess I'll add another grain of salt to my pile.
 
V

V-Temp

Well-Known Member
Member
Level 8
Joined
Jul 20, 2017
Messages
1,227
Trophies
0
Age
34
XP
1,342
Country
United States
Since this is an XAW unit, its very possible our XAJ expectations for serial do not match up, so do keep that in mind.
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Homebrew Tutorial  Building Pagascape from source to running Self Hosted mode on Windows and MSYS

mig switch not working/updating??

Hacking Misc  Getting the MIG Switch to load an XCI dump without its original Initial Data

Hacking Homebrew Tutorial  Portable PegaScape (Win32)

Fusee.bin with the new Pre-release of Atmoshere 1.7.0

DBI language error

Emulation Homebrew Tutorial  Building SM64 for Nintendo Switch from sm64ex-alo Repository

Homebrew Tutorial  Setup a DevKitPro environment on Windows.

General chit-chat
Help Users
    Psionic Roshambo @ Psionic Roshambo: you could say it fell out.