Hacking Homebrew maybe Closer Than We Think?

jaxxster

jaxxster

The Heretic
OP
Member
Level 4
Joined
Oct 31, 2006
Messages
2,421
Trophies
0
Age
36
Location
South East London
Website
www.gbatemp.net
XP
571
Country
"Flash Player in Wii internet channel can be exploited to possibly run custom code

Adobe issued a security bulletin four days ago which notes that the Flash Player as used in the Wii's Internet Channel can be exploited to run arbitary code due to an input validation error in flash. This could lead to a gate-way for hackers to create some form of homebrew launcher. The good news is that Nintendo may not be able to patch this exploit too quick as they will have to get a new 'un-exploitable' version of the Flash player from Adobe."

Taken from mc.net
 
J

jeklnoo

Well-Known Member
Member
Level 2
Joined
Oct 20, 2006
Messages
339
Trophies
0
Website
Visit site
XP
155
Country
United States
sorry....that site says it affects 7.0.69.0 and lower, and the wii has 7.0.70.0 installed
frown.gif


also, the details seem to imply that the 'arbitrary code' would be actionscript code, which wouldn't help us a whole lot.
 
I

imgod22222

GBAtemp's Original No-faced Member
Member
Level 5
Joined
Jul 5, 2006
Messages
1,555
Trophies
0
Website
Visit site
XP
586
Country
United States
yeah, actionscript has no 'low-level' control over anything. The only thing that I know AS 2.0 (i haven't gotten ahold of anything AS3.0) could do besides manipulate its own code is 1) write a single file to your hard drive specifying what 'settings' you may implement 2) Communication to a server. But the actual communication is handled by something else, PHP for example.

NOTE: I've only taken one year of AS 2.0 in highschool. we don't have CS3 and AS3.0 yet.
 
Hitto

Hitto

MKDS Tournament Winner
Member
Level 3
Joined
Nov 29, 2005
Messages
1,448
Trophies
0
Age
44
Location
Nice, France
Website
Visit site
XP
263
Country
France
If you can write *anything* at all, even a measly cookie on a resident drive, shouldn't that open a fuckload of possibilities?
I thought you could launch executables with AS2... But dunno how the wii would talk to the browser.
 
M

moshii

Well-Known Member
Member
Level 1
Joined
Jun 6, 2006
Messages
216
Trophies
0
Age
39
Location
函館
Website
Visit site
XP
104
Country
QUOTE(Hitto @ Jul 16 2007 said:
If you can write *anything* at all, even a measly cookie on a resident drive, shouldn't that open a fuckload of possibilities?
I thought you could launch executables with AS2... But dunno how the wii would talk to the browser.
Click to expand...

You need to get a lot closer to the metal before you can do much... chances are the Wii browser is sandboxed; damage limitation for exploits like this.
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Emulation  Snes9x unacceptable input latency

Hacking  Bricked Wii Family Edition

Wiiflow brings me back to sys menu... sometimes.

64DD on Wii?

All Channels Discussion

Hacking  Wii randonly slowing down mid-game

Hacking  AARTool for Wii archives

Hacking Tutorial Project  Wiiflow lite 5.5.4 , 10 themes in one pack 2024 - with extras

General chit-chat
Help Users
  • Julie_Pilgrim @ Julie_Pilgrim:
    the internet
  • Julie_Pilgrim @ Julie_Pilgrim:
    @Psionic Roshambo i have 16 gb in my pc and i run into issues with ram more than i'd like to admit
  • HiradeGirl @ HiradeGirl:
    I got only 8GB of RAM. But I want 32GB.
  • K3Nv2 @ K3Nv2:
    https://a.co/d/f8gq43e
  • Sonic Angel Knight @ Sonic Angel Knight:
    :ninja:
  • Sonic Angel Knight @ Sonic Angel Knight:
    Time to just download more ram
  • K3Nv2 @ K3Nv2:
    Yeah search Google
  • Sonic Angel Knight @ Sonic Angel Knight:
    Or, I also heard that if you use flash memory, it can act as more "RAM" at least windows tell me when I stick a flash drive into it.
  • Veho @ Veho:
    It can act as a swap drive but that isn't more RAM, it's slooow.
  • K3Nv2 @ K3Nv2:
    I wish we could have 1Gbps external storage by now
  • K3Nv2 @ K3Nv2:
    Like for micro
  • Veho @ Veho:
    https://www.keepretro.com/products/miyoo-a30
  • Veho @ Veho:
    New Myoo.
  • SylverReZ @ SylverReZ:
    @Veho, Yooo noice
  • SylverReZ @ SylverReZ:
    Looks like a Famicom handheld
  • Veho @ Veho:
    Yeah, they were going for that.
  • Veho @ Veho:
    It's not very good though.
  • Veho @ Veho:
    I'm watching the review, the emulators it uses suck bawls.
  • Veho @ Veho:
    Software update might improve it.
  • Psionic Roshambo @ Psionic Roshambo:
    Or maybe someone will make like Emulation Station for it or something?
  • Veho @ Veho:
    That counts as a software update :tpi:
     +1
  • OctoAori20 @ OctoAori20:
    Ello
  • K3Nv2 @ K3Nv2:
    I can think of the design teams process another joystick and no audio or a joystick and mono audio
  • Veho @ Veho:
    "You think we can just put the speakers at the top
    ?" "NO!"
     +1
  • K3Nv2 @ K3Nv2:
    Pft stereo speakers you're fired
     +1
    K3Nv2 @ K3Nv2: Pft stereo speakers you're fired +1