Homebrew supermysterychunkhax - Savegame Exploit for Super Mystery Dungeon

Ricken

Empty Bliss; Selfishness
Member
Joined
Jan 19, 2016
Messages
2,630
Trophies
1
Age
20
Location
Mid-Michigan
XP
2,618
Country
United States
Now i can downgrade my friends system!!!

i'll report results when i can rent a copy of the game then try with PlaiSysUpdater, just to see if it will bug out like Ironhax liked causing


and better than OoTHax imo, other than the 9.9=< (10.2 for others) FW limit. Otherwise more convenient than Ninjhax and OoTHax (No multiple QR/Powersaves/Installers)

And yes im Neglecting Smashhax. almost everyone does :P
 
Last edited by Ricken,

Swiftloke

Hwaaaa!
Member
Joined
Jan 26, 2015
Messages
1,770
Trophies
0
Location
Nowhere
XP
1,436
Country
United States
So, to my understanding the payload does this:
An overflowed compressed buffer is loaded into memory. That overflow overwrites a memchunk pointer, which (somehow? Explain please) overwrites a function in the decompression method. The modified function copies the entire compressed buffer directly into the stack. This data is (somehow? More explanation please) interpreted as ROP which gspwn's the payload into .text, executing it (somehow).
I'm not a very good programmer, so if @shinyquagsire23 or someone else can explain the holes in my interpretation that'd be nice.
 
General chit-chat
Help Users
  • No one is chatting at the moment.
    Skelletonike @ Skelletonike: No idea what that is tbh, is that like the iso or something?