Hacking Payloads for 10.6 up etc

[Starhowl]

Can someone explain to me what it means that the latest 'payloads' are up for 10.6 and what smea's latest tweets from Feb 25 etc. mean?

 

[ChaosRipple]

In order to run some sort of exploit, a payload must be installed where the exploit launches. For example, for Oot3DHax, the payload must be injected into the save file of the Oot3D game. Now, everytime there is a system update, the payload must be updated so that its offsets match the ones of the new update. Hence, the payloads for 10.6 are created to allow exploiting into the Homebrew Launcher on a version 10.6 system.

 

[Starhowl]

why is nobody talking about this around here? doesn't it mean that 10.6 updated systems now are exploitable?

 

[Tony_93]

why is nobody talking about this around here? doesn't it mean that 10.6 updated systems now are exploitable?

Yes but still no...

There are several types of exploits and ways for code execution to happen but to put it simple for you, there are 2 basic things you should uderstand:

"userland code execution" and "kernel code execution", userland gives you access to what games and apps can access only, but kernel gives you full access to the system.

Smea's homebrew launcher only needs userland code execution which as I said before it will give full access to what games and apps have access to, for example it will allow you to play homebrew games and other things in a userland level, kernel in the other hand will give you full access to the system and everything it can do, run a CFW for example, dump your NAND, downgrade your system, etc...

No one is talking about this because we have had userland code execution in every firmware since a bit more than a year now thanks to Smea, this is not something new hapenning in 10.6

 

[Starhowl]

Well I'm wondering if Gateway will come out with their promised (kernel mode?) exploit for 10.3 soon..

 

[Tony_93]

Well I'm wondering if Gateway will come out with their promised (kernel mode?) exploit for 10.3 soon..

The exploit is out there already, is called Memchunkhax2 and it allows you to downgrade your system to 9.2 (sysupdater) and use Gateway/CFW (once you get to 9.2).

 

[Starhowl]

But it also could brick my console.. right?
If they say 'an exploit is out for 10.3', does this mean there is an exploit out for 10.3.28E, 10.3.28U, 10.3.14, 10.3.01, etc. ..?
(in other words for all regions and all subversions?)

 

[Tony_93]

But it also could brick my console.. right?
If they say 'an exploit is out for 10.3', does this mean there is an exploit out for 10.3.28E, 10.3.28U, 10.3.14, 10.3.01, etc. ..?
(in other words for all regions and all subversions?)

The region doesn't matter and there is only 10.3.28, there is no 10.3.01, no 10.3.02... no 10.3.27...So as long as it is 10.3 you can use Memchunkhax2 on it.

There is a chance of bricking your system either by human error (wrong files used), corrupted files used or by extremely bad luck and the downgrade proccess halts at some point for an unknown reason (it happens once in a while).

The only %100 safe way to do this without risk is to hardmod your system and dump your NAND before trying the downgrade proccess, you can either do it yourself if you know how to solder or send your system to a trusted usee from this website (charge would be around $40). So in any case your system bricks midway in the proccess, you can bring him back from the dead by flashing the backup and trying again.

 

[ChaosRipple]

why is nobody talking about this around here? doesn't it mean that 10.6 updated systems now are exploitable?

Nobody is really talking about it because like Tony_93 says, the exploit being used by what Smealum is referring to in those tweets don't give full privileges. Also, at this current time, those updates payloads for 10.6 only work with Oot3D and Cubic Ninja (and maybe SSB?) since the Web Browser and the Home Menu was patched, meaning you'd have to pay at minimum of about $55 out of your pocket to access the exploit. And like Tony_93 says, we've had this exploit for a long time already. We're only patching it to allow it to work on the latest system update.

Well I'm wondering if Gateway will come out with their promised (kernel mode?) exploit for 10.3 soon..

That's putting words into Gateway's mouth. They said they're "providing support up to version 10.3." That doesn't exactly mean they will provide a kernel exploit to work with 10.3. It could just mean they will provide a downgrade method for 10.3 users so that they will be able to use Gateway on 9.2, which is exactly what they're saying on their website.

Though, if they can implement NTRCardHax into their carts or even use SNSHax, they can technically get kernel on 10.3 (even on O3DS).

 

[Starhowl]

Is there anyway some kind of Google sheet or Excel table for a comparison between different firmwares?

 

[ChaosRipple]

Is there anyway some kind of Google sheet or Excel table for a comparison between different firmwares?

This is the official Nintendo link, although they aren't exactly descriptive, probably because they don't want to let more people know about possible exploits. 3DBrew has more info on exactly what changes.

 

[Starhowl]

I'm sorry, I was thinking more about custom firmwares.. ^^;

 

[TobiasAmaranth]

Calm your tail, wolfie. http://gbatemp.net/threads/guide-i-have-system-menu-version-x-what-can-i-do.415916/ See if this helps you any. Don't know if you're asking about New3DS or a regular one, though. I don't know much about New3DS since I still own an original one.