https://www.game4check.com/2021/05/...a-javascript-exploit-but-dont-worry-too-much/
Last edited by Deleted member 546149,
Hacker finds a way to write Javascript on the Nintendo Switch
- Thread starter Deleted member 546149
- Start date
- Views 2,430
- Replies 19
- Likes 4
https://www.game4check.com/2021/05/...a-javascript-exploit-but-dont-worry-too-much/
A hacker referred to as Connor has found a possible exploit revealed in his Pwinstry blog that he found a bug in the screenshot transfer feature. The bug allows for any javascript code to be written on the switch, which can lead to a possible exploit. Although, he has agreed with Nintendo to not publically share the code of the exploit. According to Game4Check, Nintendo is working to patch the bug. Connor has stated that unsigned code couldn't knowingly be written but it can still lead to a possible exploit
Inb4 kernel exploit on patched switches
how could it even lead to an exploit?
the name for your switch has only 32 characters, I don't think you can write something crazy with this limitation...
the name for your switch has only 32 characters, I don't think you can write something crazy with this limitation...
Well, from what I hear, it has to do with a server and qr code program, but it probably can't lead to much.
I wanna see what @SciresM says before jumping to conclusions
if this was worth using for privilege escalation I think we would have heard from him by now
Since when have hackers become such pu** in the boots anyways ?
White Hat. Yeah right.
At one point it'll turn into the apple-esque:
"Forget your perma exploits, we -the hackers'd rather sell our exploits.."
You could release it, then tell Ninty.
(They'll patch it anyways)
That way both parties have something.
If it allows someone to program without an expensive devkit that't work double in nintys favor anyways...
White Hat. Yeah right.
At one point it'll turn into the apple-esque:
"Forget your perma exploits, we -the hackers'd rather sell our exploits.."
You could release it, then tell Ninty.
(They'll patch it anyways)
That way both parties have something.
If it allows someone to program without an expensive devkit that't work double in nintys favor anyways...
Maybe there are bugs, we have to wait but its probably going to amount to nothing to almost nothing
@WiiMiiSwitch , your avatar reminds me of the pillsbury doughboy who likes a little tickle of the tummy.
- Joined
- Aug 19, 2015
- Messages
- 10,189
- Trophies
- 1
- Location
- Glasgow
- Website
- www.rockstarnorth.com
- XP
- 16,144
- Country
Haha I can see it now, @WiiMiiSwitch future GBAtemp news reporter, where @WiiMiiSwitch started his time on the forum hating/holding grudges against staffs become a staff member.
Last edited by Hayato213,
I don't have any grudges or hate to the staff, just some respectful disagreements
--------------------- MERGED ---------------------------
Polly has found his new role in life from polls to rap to news reporter. This is one role I won't bitch about
Rapping was for that one dude who locked me in a cage. The polls are on another secret website that I can't spill the beans about because YOU GOT ME BANNED FROM DIGITALWORLDZ!!!!Polly has found his new role in life from polls to rap to news reporter. This is one role I won't bitch about
WiiMiiSwitch probably has the wildest character arcs I've seen from anyone on this site
Last edited by Deleted member 514389,
Buffer overflow, rop chain
That's how the 3ds mset pretty much worked, not one exploit but a chain of different exploits
--------------------- MERGED ---------------------------
That's why I'm a greyhat
Pay me Nintendo, it's technically your fuck up, you'll lose more in profit potential then what you'll pay me for it
Also officially, you can't use retail units for development, if you're a Nintendo developer, you can via cfw but it is specifically stated in the development contract, libctr and devkit pro (open source SDK) is not allowed (officially)
3ds and wiiu devkits are cheap, around $1500 or less, compare it to Xbox or sony
For a company or a person with a decent job, this isn't expensive, especially if you're going actually use it to make games to sell, which you will make the $1500 investment back.....
Last edited by Deleted member 668561,
i really doubt you can achieve that on the switch browser with only 32 characters (also switch has aslr so that won't work unlike the 3ds)
A buffer overflow works by feeding data that's larger than 32 characters, if possible, this hopefully allows you to arbitrarily access memory you're not supposed to, which from there you hopefully can use a rop chain to disable drm
It won't work if the switch does sanity checks on what you're putting in
Also the switch DRM is very similar to what was used on the 360, aslr, memory hashing and encryption, update revocation, and they went partying with efuses
Wonder if an rgh style exploit is possible, via clock or power rail glitching
Last edited by Deleted member 668561,
Similar threads
-
- Article
-
- Portal
-
- Portal
- No one is chatting at the moment.
