Homebrew (Partial) Idea For a 5.5.2 Exploit

Wolfer473

Wolfer473

Active Member
OP
Newcomer
Level 1
Joined
Jul 27, 2017
Messages
30
Trophies
0
XP
103
Country
United States
Okay, so before you ignore this I've already asked some devs in the discord server and they said that this might be doable but there are some issues that could (maybe) be solved.

THEORY: The eShop uses the same mvplayer.rpl in 5.5.2 that the internet browser used in 5.5.1, and the eShop also has JIT. So theoretically, the Exploit video should work in the eShop.

ISSUES:
1) Unlike Crunchyroll ads, the eShop uses an SSL connection with the servers, so it would be extremely hard (if not impossible) to remap a video (i.e. The Super Mario Cat Show that you can play/watch in the eShop.) to the exploit .mp4.

2) This is still untested, so even after all of that work fixing the SSL, it might not work. (i.e missing an essential library item, code execution failing, video player has a different patch from internet browser, etc.)

3) I was thinking of attempting to redirect the eShop to a custom server where we could play the exploit .mp4, but (again curse SSL) that would either require remapping to redirect the Wii U or maybe changing the URL using FTPii and going into the title information, but that would require access to the Homebrew launcher, which kind of defeats the purpose.

So I wanted to put this theory out there in case anyone can come up with a solution to these problems, or to tell me it can't be done so I stop working on it.

Thanks for reading.
 

Attachments

  • Screenshot_20170814-121636.png
    Screenshot_20170814-121636.png
    17.9 KB · Views: 325
Last edited by Wolfer473,
I

iAqua

Member
Level 11
Joined
Dec 7, 2015
Messages
2,848
Trophies
1
Location
XP
2,476
Country
United Kingdom
Wolfer473 said:
Okay, so before you ignore this I've already asked some devs in the discord server and they said that this might be doable but there are some issues that could (maybe) be solved.

THEORY: The eShop uses the same mvplayer.rpl in 5.5.2 that the internet browser used in 5.5.1, and the eShop also has JIT. So theoretically, the Exploit video should work in the eShop.

ISSUES:
1) Unlike Crunchyroll ads, the eShop uses an SSL connection with the servers, so it would be extremely hard (if not impossible) to remap a video (i.e. The Super Mario Cat Show that you can play/watch in the eShop.) to the exploit .mp4.

2) This is still untested, so even after all of that work fixing the SSL, it might not work. (i.e missing an essential library item, code execution failing, video player has a different patch from internet browser, etc.)

3) I was thinking of attempting to redirect the eShop to a custom server where we could play the exploit .mp4, but (again curse SSL) that would either require remapping to redirect the Wii U or maybe changing the URL using FTPii and going into the title information, but that would require access to the Homebrew launcher, which kind of defeats the purpose.

So I wanted to put this theory out there in case anyone can come up with a solution to these problems, or to tell me it can't be done so I stop working on it.

Thanks for reading.
Click to expand...
as shown by crunchyroll and watchup, not all mvplayers are the same. if you figure out (somehow) how to remap a video, i'll be willing to give it a try though.
 
Last edited by iAqua,
  • Like
Reactions: Wolfer473
Wolfer473

Wolfer473

Active Member
OP
Newcomer
Level 1
Joined
Jul 27, 2017
Messages
30
Trophies
0
XP
103
Country
United States
iAqua said:
as shown by crunchyroll and watchup, not all mvplayers are the same. if you figure out (somehow) how to remap a video, i'll be willing to give it a try though.
Click to expand...

Yeah, but I figured Nintendo would want to save as much time as possible developing those apps, and since there both in the same group (can be run while software is suspended) that they would save time and use the same mvplayer. If you would be willing to give it a try please do because I'm kind of stuck right now.
 
I

iAqua

Member
Level 11
Joined
Dec 7, 2015
Messages
2,848
Trophies
1
Location
XP
2,476
Country
United Kingdom
Wolfer473 said:
Yeah, but I figured Nintendo would want to save as much time as possible developing those apps, and since there both in the same group (can be run while software is suspended) that they would save time and use the same mvplayer. If you would be willing to give it a try please do because I'm kind of stuck right now.
Click to expand...
i'm not a magician, and i certainly can't fake a ssl cert. redirecting will be up to you or anyone else really wanting to try this. sorry.
 
Wolfer473

Wolfer473

Active Member
OP
Newcomer
Level 1
Joined
Jul 27, 2017
Messages
30
Trophies
0
XP
103
Country
United States
iAqua said:
i'm not a magician, and i certainly can't fake a ssl cert. redirecting will be up to you or anyone else really wanting to try this. sorry.
Click to expand...
K thanks anyway. I know that the redirecting of SSL is almost impossible, and I should probably be the one screwing around with it since it was my theory.
 
  • Like
Reactions: iAqua

Site & Scene News

Go to forum More news

Popular threads in this forum

Hardware Tutorial  MLC2SD - A Wii U NAND (eMMC) Replacement Interposer

A really, REALLY old browser exploit (for 5.3.2)?

Wii U after try to change region has no video signal, and no game pad synced

Gaming  Online services for the 3DS and Wii U have been shutdown. Here is how to get back online!

Hacking Hardware  Wii U No Display (Logs dumped)

Homebrew  issues with wup installer + aroma (possibly having to do with region of the game)?

Simpson's Hit & Run Wiiu

Homebrew  Huevo's Vault | Wii U Themes

General chit-chat
Help Users
  • No one is chatting at the moment.
    Sonic Angel Knight @ Sonic Angel Knight: :ninja: