1. WiiMiiSwitch

    OP WiiMiiSwitch COBANERMITE FOREVER
    Member

    Joined:
    Dec 18, 2020
    Messages:
    1,087
    Country:
    United States
    [​IMG]
    A hacker referred to as Connor has found a possible exploit revealed in his Pwinstry blog that he found a bug in the screenshot transfer feature. The bug allows for any javascript code to be written on the switch, which can lead to a possible exploit. Although, he has agreed with Nintendo to not publically share the code of the exploit. According to Game4Check, Nintendo is working to patch the bug. Connor has stated that unsigned code couldn't knowingly be written but it can still lead to a possible exploit
    :arrow:https://www.game4check.com/2021/05/...a-javascript-exploit-but-dont-worry-too-much/
     
    Last edited by WiiMiiSwitch, May 9, 2021
  2. NoNAND

    NoNAND Give me back my legions!
    Member

    Joined:
    Aug 22, 2015
    Messages:
    2,184
    Country:
    Albania
    Inb4 kernel exploit on patched switches
     
    smallissue and WiiMiiSwitch like this.
  3. ZoNtendo

    ZoNtendo GBAtemp Advanced Fan
    Member

    Joined:
    May 25, 2015
    Messages:
    561
    Country:
    how could it even lead to an exploit?

    the name for your switch has only 32 characters, I don't think you can write something crazy with this limitation...
     
    WiiMiiSwitch likes this.
  4. WiiMiiSwitch

    OP WiiMiiSwitch COBANERMITE FOREVER
    Member

    Joined:
    Dec 18, 2020
    Messages:
    1,087
    Country:
    United States
    Well, from what I hear, it has to do with a server and qr code program, but it probably can't lead to much.
    I wanna see what @SciresM says before jumping to conclusions
     
    leedare likes this.
  5. ZoNtendo

    ZoNtendo GBAtemp Advanced Fan
    Member

    Joined:
    May 25, 2015
    Messages:
    561
    Country:
    if this was worth using for privilege escalation I think we would have heard from him by now
     
    smallissue, Osha and WiiMiiSwitch like this.
  6. notrea11y

    notrea11y GBAtemp Regular
    Member

    Joined:
    Dec 24, 2019
    Messages:
    299
    Country:
    Germany
    Since when have hackers become such pu** in the boots anyways ?

    White Hat. Yeah right.

    At one point it'll turn into the apple-esque:
    "Forget your perma exploits, we -the hackers'd rather sell our exploits.."


    You could release it, then tell Ninty.
    (They'll patch it anyways)
    That way both parties have something.

    If it allows someone to program without an expensive devkit that't work double in nintys favor anyways...
     
  7. WiiMiiSwitch

    OP WiiMiiSwitch COBANERMITE FOREVER
    Member

    Joined:
    Dec 18, 2020
    Messages:
    1,087
    Country:
    United States
    It seems like this hacker just believes in open source projects
     
  8. ZachyCatGames

    ZachyCatGames GBAtemp Psycho!
    Member

    Joined:
    Jun 19, 2018
    Messages:
    3,199
    Country:
    United States
    It's useless without additional bugs that don't exist
     
  9. WiiMiiSwitch

    OP WiiMiiSwitch COBANERMITE FOREVER
    Member

    Joined:
    Dec 18, 2020
    Messages:
    1,087
    Country:
    United States
    Maybe there are bugs, we have to wait but its probably going to amount to nothing to almost nothing
     
  10. NoNAND

    NoNAND Give me back my legions!
    Member

    Joined:
    Aug 22, 2015
    Messages:
    2,184
    Country:
    Albania
    @Prans is this front page worthy or not?
     
    WiiMiiSwitch likes this.
  11. godreborn

    godreborn GBAtemp Legend
    Member

    Joined:
    Oct 10, 2009
    Messages:
    18,221
    Country:
    United States
    @WiiMiiSwitch , your avatar reminds me of the pillsbury doughboy who likes a little tickle of the tummy. :P
     
    WiiMiiSwitch likes this.
  12. AmandaRose

    AmandaRose Do what I do. Hold tight and pretend it’s a plan
    Member

    Joined:
    Aug 19, 2015
    Messages:
    8,441
    Country:
    United Kingdom
    Polly has found his new role in life from polls to rap to news reporter. This is one role I won't bitch about :rofl2:
     
    Hayato213 likes this.
  13. Hayato213

    Hayato213 GBAtemp Guru
    Member

    Joined:
    Dec 26, 2015
    Messages:
    9,395
    Country:
    United States
    Haha I can see it now, @WiiMiiSwitch future GBAtemp news reporter, where @WiiMiiSwitch started his time on the forum hating/holding grudges against staffs become a staff member.
     
    Last edited by Hayato213, May 10, 2021
  14. WiiMiiSwitch

    OP WiiMiiSwitch COBANERMITE FOREVER
    Member

    Joined:
    Dec 18, 2020
    Messages:
    1,087
    Country:
    United States
    I don't have any grudges or hate to the staff, just some respectful disagreements

    — Posts automatically merged - Please don't double post! —

    Rapping was for that one dude who locked me in a cage. The polls are on another secret website that I can't spill the beans about because YOU GOT ME BANNED FROM DIGITALWORLDZ!!!!
     
  15. Nerdtendo

    Nerdtendo Your friendly neighborhood idiot
    Member

    Joined:
    Sep 29, 2016
    Messages:
    1,564
    Country:
    United States
    WiiMiiSwitch probably has the wildest character arcs I've seen from anyone on this site
     
  16. WiiMiiSwitch

    OP WiiMiiSwitch COBANERMITE FOREVER
    Member

    Joined:
    Dec 18, 2020
    Messages:
    1,087
    Country:
    United States
    You have no idea how of I am on Gab
     
  17. notrea11y

    notrea11y GBAtemp Regular
    Member

    Joined:
    Dec 24, 2019
    Messages:
    299
    Country:
    Germany
    Well, someone had to take BoneMonkey's place after all.
    Also hadrian is MIA also... huh
     
    Last edited by notrea11y, May 11, 2021
    WiiMiiSwitch likes this.
  18. aadz93

    aadz93 GBAtemp Official Psychonaut
    Member

    Joined:
    Jan 29, 2008
    Messages:
    1,209
    Country:
    Korea, North
    Buffer overflow, rop chain

    That's how the 3ds mset pretty much worked, not one exploit but a chain of different exploits

    — Posts automatically merged - Please don't double post! —

    That's why I'm a greyhat

    Pay me Nintendo, it's technically your fuck up, you'll lose more in profit potential then what you'll pay me for it


    Also officially, you can't use retail units for development, if you're a Nintendo developer, you can via cfw but it is specifically stated in the development contract, libctr and devkit pro (open source SDK) is not allowed (officially)

    3ds and wiiu devkits are cheap, around $1500 or less, compare it to Xbox or sony

    For a company or a person with a decent job, this isn't expensive, especially if you're going actually use it to make games to sell, which you will make the $1500 investment back.....
     
    Last edited by aadz93, May 12, 2021
  19. Arck

    Arck GBAtemp Advanced Fan
    Member

    Joined:
    Mar 13, 2016
    Messages:
    931
    Country:
    i really doubt you can achieve that on the switch browser with only 32 characters (also switch has aslr so that won't work unlike the 3ds)
     
  20. aadz93

    aadz93 GBAtemp Official Psychonaut
    Member

    Joined:
    Jan 29, 2008
    Messages:
    1,209
    Country:
    Korea, North
    A buffer overflow works by feeding data that's larger than 32 characters, if possible, this hopefully allows you to arbitrarily access memory you're not supposed to, which from there you hopefully can use a rop chain to disable drm

    It won't work if the switch does sanity checks on what you're putting in

    Also the switch DRM is very similar to what was used on the 360, aslr, memory hashing and encryption, update revocation, and they went partying with efuses


    Wonder if an rgh style exploit is possible, via clock or power rail glitching
     
    Last edited by aadz93, May 12, 2021
    leedare likes this.
  21. thrillingblaze3145
    This message by thrillingblaze3145 has been removed from public view by porkiewpyne, May 12, 2021, Reason: Offtopic.
    May 12, 2021
Draft saved Draft deleted
Loading...

Hide similar threads Similar threads with keywords - Javascript, Nintendo, Hacker