Hacking Discussion Stagefright exploit

[jonyluke]

According to the Nintendo Switch system software's licensing information, code from FreeBSD kernel is utilized by Horizon.

Horizon utilizes several components from Android such as the Stagefright multimedia framework. According to the Citra authors, “Nintendo re-purposed the Android graphics stack and used it in the Switch for rendering.”


In Android there is a exploit that affects Stagefright
https://en.m.wikipedia.org/wiki/Stagefright_(bug)

What do you think about the possibility of doing something with it?

 

[pworld]

Um, this bug is old, why would you think it would still exist?

 

[enarky]

Seeing how that exploit was already used on the 3DS (and subsequently patched) it's highly unlikely that it's present on the Switch again.

 

[Paffo]

This exploit is pretty old, i remember using it on the nexus 5. I dont think it is still doable

 

[Joom]

The Switch just uses the FreeBSD network stack, and Stagefright only affects a media processing library. I'm curious as to why you think these two things are related.

 

[jetlego]

According to switchbrew: "the Album process itself uses libstagefright for video playback." Although I'm not sure that means some sort of attack via the album with signed videos could occur.
https://switchbrew.org/wiki/Capture_services

 

[Joom]

According to switchbrew: "the Album process itself uses libstagefright for video playback." Although I'm not sure that means some sort of attack via the album with signed videos could occur.
https://switchbrew.org/wiki/Capture_services

Doubt it, considering it was patched for the 3DS a while ago. I would sincerely hope that Nintendo wouldn't include a known CVE that affected two IPs in the past.