Hacking Exactly what step are we missing for an exploit on 9.4?

furrysalamander

furrysalamander

Member
OP
Newcomer
Level 1
Joined
Mar 31, 2014
Messages
19
Trophies
0
Age
26
XP
86
Country
United States
We have still have ROP through the web browser, so are we just missing the jump to code execution? I was a noob and installed the update to 9.4 over the holidays since I wanted eShop access and didn't have a gateway.
 
AugustoKazt

AugustoKazt

Well-Known Member
Newcomer
Level 1
Joined
Feb 5, 2015
Messages
93
Trophies
0
Age
28
XP
135
Country
Venezuela
furrysalamander said:
We have still have ROP through the web browser, so are we just missing the jump to code execution? I was a noob and installed the update to 9.4 over the holidays since I wanted eShop access and didn't have a gateway.
Click to expand...

the same to me, i update by mistake (the message for the update comes 2 times when i have the emuNAND already update, but with my ignorance can with me and i update the second time, and i lost everyting i have before :sad:.

well i have nand backups i have created with the CFW i have created before, but almost i cant get acces to my 3DS for 3 screws that not let me can acces to the inside for the Hardmod :( now my only hope if the GW o somebody bring to us a update or something for the 9.4.
 
K

Kohmei

Well-Known Member
Member
Level 7
Joined
Feb 17, 2013
Messages
824
Trophies
0
XP
1,039
Country
United States
I wouldn't be surprised if GW is holding back 9.4 support that coincides with N3DS support, in the form of a new exploit chain that only they know about. The longer they keep it unreleased, the longer Nintendo keeps producing more vulnerable units, the more money they can potentially make. It's one of few reasons I can think of that they haven't released the N3DS exploit yet.

Think it really F'ing sucks for those of us who bought cards in anticipation of a timely release, but that's really our fault more than anything. Maybe I'm just being hopeful
 
  • Like
Reactions: Random Joe
furrysalamander

furrysalamander

Member
OP
Newcomer
Level 1
Joined
Mar 31, 2014
Messages
19
Trophies
0
Age
26
XP
86
Country
United States
See, I'm really kicking myself now, because if I hadn't updated, I didn't even need a gateway to roll my firmware back to 4.5, which is what I really want at this point.
 
gamesquest1

gamesquest1

Nabnut
Former Staff
Level 22
Joined
Sep 23, 2013
Messages
15,153
Trophies
2
XP
12,247
furrysalamander said:
What do you mean nobody knows? XD
Click to expand...
he means nobody knows....pretty self explanatory, but i suppose you could say nobody knows publicly just in-case gateway do have another trick up their sleeve, but even if they did i doubt they would use it now, 90% of people who want gateway stayed on the correct FW, anyone who didnt ....well its their own fault they where warned with plenty of time
 
furrysalamander

furrysalamander

Member
OP
Newcomer
Level 1
Joined
Mar 31, 2014
Messages
19
Trophies
0
Age
26
XP
86
Country
United States
Well, someone publicly knows which step in the exploit chain we're missing to get ARM 9 access through the browser exploit in 9.4
 
AugustoKazt

AugustoKazt

Well-Known Member
Newcomer
Level 1
Joined
Feb 5, 2015
Messages
93
Trophies
0
Age
28
XP
135
Country
Venezuela
really if somebody knows something for an exploit for 9.4/9.5 is already done but as they says only as private exploit

well, for us is a waiting game
 
gamesquest1

gamesquest1

Nabnut
Former Staff
Level 22
Joined
Sep 23, 2013
Messages
15,153
Trophies
2
XP
12,247
The Real Jdbye

The Real Jdbye

*is birb*
Member
Level 23
Joined
Mar 17, 2010
Messages
23,286
Trophies
4
Location
Space
XP
13,844
Country
Norway
furrysalamander said:
We have still have ROP through the web browser, so are we just missing the jump to code execution? I was a noob and installed the update to 9.4 over the holidays since I wanted eShop access and didn't have a gateway.
Click to expand...
Simplified, there are 4 steps to a proper exploit.
An entry point, arm11 userland code execution, arm11 kernel access, and arm9 kernel access.
The Spider ROP Loader only gives us userland code execution. Arm11 kernel access I believe is needed first in order to get arm9 code execution, so all 4 are required for say a CFW.

From a .bin file loaded with spider ROP loader it would be possible to exploit the system further and gain the access needed, but this is the hard part and no one skilled is willing to release.
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Hacking Homebrew  A new way to experience StreetPass

Is it possible...?

Hacking Homebrew  how to link pnid to 3ds/how to use juxtaposition?

Hacking Hardware  New Nintendo 3DS XL Louvre

Emulation  i have citra, i have my aes keys installed, how do i get the home menu

Hacking Misc  VCRUNTIME140.dll UCRTBASED.dll Master Thread

Hardware  Why does my 3DS take so long to turn off?

Translation Project  DQM2SP translation

General chit-chat
Help Users
    SylverReZ @ SylverReZ: Or Genesis.