Toggle sidebar

Hacking 5.5.0 progress

  • Thread starter Thread starter GOT4N
  • Start date Start date
  • Views Views 372,997
  • Replies Replies 1,267
  • Likes Likes 23
Please don't let me be the only person that is actually looking into the potential glibc exploit. I assume there is someone on this site that is more familiar with all of the required components and could test all of this much faster than I could. Nonetheless, I will continue to play.

I set up Apache on a local machine, and I'm pretty sure I've got it running the python script from the git proof-of-concept code. I think my next step is to call wget (I think, because internally it uses the glibc function getaddrinfo) from a linux machine (perhaps wii u linux if that's still a thing?) and see what happens when it tries to access the apache server. If the client crashes or reports a segmentation fault, that would indicate the exploit at least has potential.

I'm unclear if the server can be a simple http server or if it needs to be an actual DNS type server. I'm neither a web developer nor a "network guy".

Also, if the WiiU binaries were not compiled with glibc, I don't expect any of this to work.
 
  • Like
Reactions: street, Chuardo, Piluvr and 1 other person
ClockWorK said:
Please don't let me be the only person that is actually looking into the potential glibc exploit. I assume there is someone on this site that is more familiar with all of the required components and could test all of this much faster than I could. Nonetheless, I will continue to play.

I set up Apache on a local machine, and I'm pretty sure I've got it running the python script from the git proof-of-concept code. I think my next step is to call wget (I think, because internally it uses the glibc function getaddrinfo) from a linux machine (perhaps wii u linux if that's still a thing?) and see what happens when it tries to access the apache server. If the client crashes or reports a segmentation fault, that would indicate the exploit at least has potential.

I'm unclear if the server can be a simple http server or if it needs to be an actual DNS type server. I'm neither a web developer nor a "network guy".

Also, if the WiiU binaries were not compiled with glibc, I don't expect any of this to work.
Click to expand...
Did it do anything?
 
  • Like
Reactions: street
ClockWorK said:
Please don't let me be the only person that is actually looking into the potential glibc exploit. I assume there is someone on this site that is more familiar with all of the required components and could test all of this much faster than I could. Nonetheless, I will continue to play.

I set up Apache on a local machine, and I'm pretty sure I've got it running the python script from the git proof-of-concept code. I think my next step is to call wget (I think, because internally it uses the glibc function getaddrinfo) from a linux machine (perhaps wii u linux if that's still a thing?) and see what happens when it tries to access the apache server. If the client crashes or reports a segmentation fault, that would indicate the exploit at least has potential.

I'm unclear if the server can be a simple http server or if it needs to be an actual DNS type server. I'm neither a web developer nor a "network guy".

Also, if the WiiU binaries were not compiled with glibc, I don't expect any of this to work.
Click to expand...

I do not have the time to dig into the exploit-hunting, but after a small time of googling I got the feeling that the Wii at least were compiled with glibc, so maybe you can use it through the WiiU's Wii-compability mode. Might at least be worth a shot (maybe you can break out of the Wii-jail with this exploit, and be able to run code to access the WiiU).
 
Gonna work on it tonight and this weekend. But like I said, there are people more experienced than I am that could probably test this stuff much faster.

Just the fact that nobody has shot the idea down yet is encouraging though.
 
Ok so, I have a question about injecting VCs on 5.5.0/5.5.1 in just userland.
Remember when the 3DS had injects via the browser? You still had to have a ROM file on the SD card, which userland can't, so my question is:

Is it possible to do the same way but then load/inject the ROM over the network?

For those who not know about this:
In the 3DS early hacking days, when you play a VC game in your Home Menu and have a ROM file on the SD card, you press the HOME button while in the game and access the browser and go to an exploit page.
When it's done, you will go back to the Home Menu, but upon resetting the game, it will load your ROM you have on the SD card.

On the Wii U it would be over the network I guess, if possible.
 
ClockWorK said:
Please don't let me be the only person that is actually looking into the potential glibc exploit. I assume there is someone on this site that is more familiar with all of the required components and could test all of this much faster than I could. Nonetheless, I will continue to play.
Click to expand...

Do you think this idea should be made into a separate thread so more people see? I have a feeling devs avoid this thread like the plague
 
  • Like
Reactions: Baphomet and Piluvr
Voxel Studios said:
hang in there; save your money! It will be released very soon, I can feel it. ;)
Click to expand...

Wasn't it reported about a week ago that porting to 5.3.2 was completed and only a few latte/hardware register were to be documented before packing it all up for release?
 
soniczx123 said:
Wasn't it reported about a week ago that porting to 5.3.2 was completed and only a few latte/hardware register were to be documented before packing it all up for release?
Click to expand...
I think so. But that's for 5.3.2 and not 5.5.0. I think there was some more work to be done on 5.5 before it was all to be released.
 
soniczx123 said:
I think 5.5 was the first to be completed. Where else could he have ported it from?
Click to expand...
You have a point. I guess the devs still have a few bugs to iron out in the exploit? Most likely that... and code clean-up. People will definitely want to take a look at the source when it all releases.
 
Possibly. Hopefully it get's released before March, so that this thread doesn't become a shitfest like his other thread when February hit.
 
I do have a good feeling about March. I will definitely bitch off if it's not released by at least half-way through April...
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Strange Blue Blinking Wii U

Hacking Homebrew Project  Modernized YouTube for Wii U

Struggling to get WiiFlow/USBLoaderGX to recognize USB sticks

Feedback  Community Overclock Stats: A5X vs B1X Motherboards

Sonic 3 AIR Wii U teaser screenshot

Wii Games Performance on Wii U (vWii C2W Overclock) – Community Testing & Results Sharing

My dad's Wii U cannot install Aroma. HELP!!

Gaming Homebrew Misc Project  Roséverse - a 1:1 Miiverse revival by Project Rosé!