Hacking Broadpwn

edgan

Member
OP
Newcomer
Joined
Jan 21, 2018
Messages
14
Trophies
0
XP
59
Country
United States
I have seen mention here and there that the Nintendo Switch is vulnerable to Broadpwn. I even found an example of someone trying to use it to hack the Nintendo Switch, but it seems at some point people either gave up or went radio silent. I also haven't seen any mention of it being explicitly stated that Nintendo patched it, and if so in what firmware version. So I am curious if anyone has any information if it has been patched, or why no one is talking about it.
 
Last edited by edgan,
  • Like
Reactions: DarthDub

edgan

Member
OP
Newcomer
Joined
Jan 21, 2018
Messages
14
Trophies
0
XP
59
Country
United States
I've honestly never even heard of this exploit, where'd you hear that the Switch might be vulnerable to it?

It uses the same wifi chip as Broadpwn, BCM4356. I was going to post links, but can't as a newcomer. Google Broadpwn nintendo switch

1. Github, actual code to plan with it
2. Twitter link with an attached video of someone crashing a Nintendo Switch by connecting to a certain SSID
 

Nezztor

Well-Known Member
Member
Joined
Nov 8, 2016
Messages
488
Trophies
0
XP
1,338
Country
Mexico
It uses the same wifi chip as Broadpwn, BCM4356. I was going to post links, but can't as a newcomer. Google Broadpwn nintendo switch

1. Github, actual code to plan with it
2. Twitter link with an attached video of someone crashing a Nintendo Switch by connecting to a certain SSID

I asked on the reswitched discord, and they say probably can work on the 3DS but on the switch cant
 

edgan

Member
OP
Newcomer
Joined
Jan 21, 2018
Messages
14
Trophies
0
XP
59
Country
United States
"Hacking" the hacking forum:

Twitter link shortened, remove the space:
goo.gl /yRt8bp

Github, remove the space:
goo.gl /BD52MF
 
Last edited by edgan,

edgan

Member
OP
Newcomer
Joined
Jan 21, 2018
Messages
14
Trophies
0
XP
59
Country
United States
My plan is to play with the Github repo today. I don't claim I can weaponize this. I am curious what everyone else knows, and wanted to bring it up to see if it might lead somewhere.

--------------------- MERGED ---------------------------

I asked on the reswitched discord, and they say probably can work on the 3DS but on the switch cant

Which channel? I hopped on the Reswitched Discord server, but not seeing much.
 
  • Like
Reactions: TotalInsanity4

V-Temp

Well-Known Member
Member
Joined
Jul 20, 2017
Messages
1,227
Trophies
0
Age
34
XP
1,342
Country
United States
Doesn't give you access to anything meaningful. You'd need to do more than just hijack the broadcom chip as it is otherwise mitigated against.

On the 3DS, sure.
 

edgan

Member
OP
Newcomer
Joined
Jan 21, 2018
Messages
14
Trophies
0
XP
59
Country
United States
Doesn't give you access to anything meaningful. You'd need to do more than just hijack the broadcom chip as it is otherwise mitigated against.

On the 3DS, sure.

It may not apply to the Switch, but this sounds interesting.

Using PCIe to read and write directly to kernel memory. While WiFi chips prior to the BCM4358 (the main WiFi chip used on the Samsung Galaxy S6) used Broadcom’s SDIO interface, more recent chips use PCIe, which inherently enables DMA to the application processor’s memory. The main drawback of this approach is that it will not support older phones.

Long page explaining Broadpwn, remove the space:
goo.gl /Ajuabc
 
  • Like
Reactions: TotalInsanity4

edgan

Member
OP
Newcomer
Joined
Jan 21, 2018
Messages
14
Trophies
0
XP
59
Country
United States
I tried it with my Nintendo Switch running firmware 4.1.0, and it didn't crash. So at least with 4.1.0, they seem to have patched it.
 
Last edited by edgan,

Site & Scene News

Popular threads in this forum

General chit-chat
Help Users
  • No one is chatting at the moment.
    S @ salazarcosplay: How are you @BigOnYa