Hacking May all your gauges be Radial.

  • Thread starter Thread starter FaTaL_ErRoR
  • Start date Start date
  • Views Views 5,570
  • Replies Replies 33

FaTaL_ErRoR

AKA ŦƕƎ ƠṀƐƝ
Member
Joined
Mar 9, 2014
Messages
491
Reaction score
349
Trophies
0
XP
473
Country
United States
There is a serious threat to all wii u browser users using the latest firmware.
Radial gauges made in certain ways could allow remote code entry and maybe even corruption of vital software to a user's wii u console.
https://bugs.webkit.org/show_bug.cgi?id=112694
This really should be fixed asap or some webservers containing certain radial gauges may make the wii u prone to data theft and theft of one's personal information.
 
There is a serious threat to all wii u browser users using the latest firmware.
Radial gauges made in certain ways could allow remote code entry and maybe even corruption of vital software to a user's wii u console.
https://bugs.webkit.org/show_bug.cgi?id=112694
This really should be fixed asap or some webservers containing certain radial gauges may make the wii u prone to data theft and theft of one's personal information.
Also note some serious patches need to be made in the javascript sectors. As programs such as this one are currently able to communicate with the console. Could open a ton of doors to kernel access if small changes were made to this program and others like it.
http://www.crashub.org/1.3/reference.html
 
may make the wii u prone to data theft and theft of one's personal information.

well the way you put that makes it sound really bad.

i don't think that many people would save much personal information on their wii u... except for eshop data.

if this problem includes the eshop data, then yeah this could be serious.
 
The fuck is a "Radial guage"?
A "Radial gauge" looks like this one.
http://www.jqchart.com/jquery/gauges/RadialGauge/LiveData
This exact one causes the wii u browser to crash in such a way it is exploitable.
And since it is exploitable and remote access can be obtained it is a threat to the security of the wii u and the console owners personal information and anything temporarily stored in ram. This should be patched very soon to avoid malicious use.
 
How do I unblock the updates so I will be ready when the update hits? I need my
"Further improvements to overall system stability, system security, and other minor adjustments have been made to enhance the user experience"
 
Guess I'll wipe the passwords until Nintendo releases a firmware patch.

Thank the maker for improving user experience by enhancing system stability! I'm on 3.1.0 - my system is really unstable! I had to use concrete deck blocks to keep it from falling off the shelf!
 
I'm on 5.4, so I decided to unplug my system in case there is something that works with this.

It's a shot. In the dark, but at least a shot.
 
That gauge did not make my Wii browser crash. I tried it multiple times. All it seems to do it get smaller and smaller when the needle tries to move until it is gone and just the numbers show. A bug yes, but I'm not getting a crash of any kind. I'm on 5.3.2. What version did you try this on?
 
That gauge did not make my Wii browser crash. I tried it multiple times. All it seems to do it get smaller and smaller when the needle tries to move until it is gone and just the numbers show. A bug yes, but I'm not getting a crash of any kind. I'm on 5.3.2. What version did you try this on?
5.4...
It crashes the browser The fact the needle goes away on 5.3.2 means it was also exploitable in 5.3.2
In 5.4 the needle shows up very briefly then it's gone. Read the links on the bug page I posted as to why this happens and you'll see just how exploitable it is.
 
I've never had any data worth stealing on my Wii U so yay?

I also highly doubt I'll ever wind up at a site with one of these radial gauges in them while using the Wii U browser, unless it somehow is part of hacking the system at last.
 

Site & Scene News

Popular threads in this forum