Toggle sidebar

Homebrew VC Crash useful?

froggestspirit

froggestspirit

Aspiring Game Dev
Member
Level 9
Joined
Jul 28, 2011
Messages
1,284
Reaction score
700
Trophies
1
XP
1,572
Country
United States
For a while, I've known a glitch in a gameboy game, that when it was released on the VC, It could cause a crash that would exit the emulator, and force a system reboot. Would this be helpful in any way to possibly provide an entrypoint for 9.5.23? It's not always a consistant crash, but luckly you can create a restore point before it, and it will not let you access the VC menu if it crashes correctly. I'm also interested in finding out what makes this crash and exit the emulator as opposed to a crash that only locks up the game (where you can still load a restore point).
 
..again?... ah well this time i wont make a poor rap about this one..i'll just say: hello world!
:wacko:
 
Possibly. I'd contact a dev rather than post here or people will just troll you.
 
I'm not saying it'd be kernal access, honestly I wouldn't really expect anything more than ARM 11 access if even that, or maybe another solution to inject GB roms
 
  • Like
Reactions: puss2puss
If it kicks you back to the home menu with some "the application has crashed" error, it's guaranteed to be useless. If it blackscreens or something, it MIGHT be useful (but still unlikely as you'd need a way to inject whatever data you want as well). I managed to break my Metroid NES VC to the point where it literally crashed as soon as I started the game and even resetting the VC wouldn't fix it at some point by entering random, technically valid codes using a generator program. The only thing that worked was deleting and redownloading the game.
 
Not trolling, crash does not indicate a possible exploit. Ever. I don't know why this idea is popular. Yes years ago, you could do a buffer overflow. But that was a particular crash that was known to run unsigned code. That shit doesn't work anymore. These threads are getting old.
 
vahnx said:
Possibly. I'd contact a dev rather than post here or people will just troll you.
Click to expand...


Dev will tell you that in 99.9998 percent of cases out there, crash isn't exploitable. The only reason people keep trolling on posts like this is because it really isn't a viable conclusion that crashes are exploitable...this isn't 1995, there's hardware based protections from this sort of exploit these days..
 
  • Like
Reactions: WeedZ
It sounds very unlikely that this could lead to an exploit, and right now, I think people would be interested in another entry point that already exists.

(For instance, Cubic Ninja as an entry point is very unlikely to get patched out magically, since the devs behind the game are no longer in circulation.)
 
WeedZ1985 said:
Not trolling, crash does not indicate a possible exploit. Ever. I don't know why this idea is popular. Yes years ago, you could do a buffer overflow. But that was a particular crash that was known to run unsigned code. That shit doesn't work anymore. These threads are getting old.
Click to expand...
Buffer overflows are still very popular and some are used on the 3ds.

I know this type of thread is annoying but sometimes found bugs can lead to exploits.

They should at least be reported so security researchers can:
1. recreate the crash
2. investigate it for a possible (1-5%) chance of an exploitable vector.

It would be nice if there was a designated thread in the 3ds hacking section to collect these bug reports and any errant threads can be merged there.
 
zoogie said:
Buffer overflows are still very popular and some are used on the 3ds.

I know this type of thread is annoying but sometimes found bugs can lead to exploits.

They should at least be reported so security researchers can:
1. recreate the crash
2. investigate it for a possible (1-10%) change of an exploitable vector.

It would be nice if there was a designated thread in the 3ds hacking section to collect these bug reports and any errant threads can be merged there.
Click to expand...

I see a lot of people asking us to merge this post here, merge that post there, merge these threads together et cetera.
Know that we do not have the functionality to do any of these things at this time. (I've tried)
However a "So you made your WiiU or 3DS crash: Post how you did it, here" thread might not be a horrible idea
 
  • Like
Reactions: migles and zoogie
zoogie said:
Buffer overflows are still very popular and some are used on the 3ds.
Click to expand...

No they're not. the data size of the buffer is checked and validated by process9 and trigger a svcBreak if oversized.

zoogie said:
They should at least be reported so security researchers can:
1. recreate the crash
2. investigate it for a possible (1-5%) chance of an exploitable vector.
Click to expand...
It's a waste of time. there is less then a percent of a percent of a chance. if you crashed and the system forced a reboot, thats a pretty clear indicator that there is no way to exploit it. whatever caused the validation fail would cause it again before any injected cmds could be triggered. When was the last time some random dude found a crash in a game and dev's made an exploit out of it? Never.

People seem to think that when something crashes it just goes 'oh lerd! i don't know what ta do. feed some code, any code. i will run that shit cause i r confused.'. when really it goes. 'um, nope. we're gunna restart to run through validation checks again. press (a). also all your unsaved data is lost, sorry bro.'

zoogie said:
It would be nice if there was a designated thread in the 3ds hacking section to collect these bug reports and any errant threads can be merged there.
Click to expand...
i agree with this, then i would have a nice clean list of members to systematically add to my ignore list.
 
  • Like
Reactions: Le Citron Vert, dronesplitter, Vulpes Abnocto and 1 other person
WeedZ1985 said:
No they're not. the data size of the buffer is checked and validated by process9 and trigger a svcBreak if oversized.
.
Click to expand...
ctrl-F "buffer overflow" on this page
http://3dbrew.org/wiki/3DS_System_Flaws
WeedZ1985 said:
It's a waste of time. there is less then a percent of a percent of a chance. if you crashed and the system forced a reboot, thats a pretty clear indicator that there is no way to exploit it. whatever caused the validation fail would cause it again before any injected cmds could be triggered. When was the last time some random dude found a crash in a game and dev's made an exploit out of it? Never.

People seem to think that when something crashes it just goes 'oh lerd! i don't know what ta do. feed some code, any code. i will run that shit cause i r confused.'. when really it goes. 'um, nope. we're gunna restart to run through validation checks again. press (a). also all your unsaved data is lost, sorry bro.'

i agree with this, then i would have a nice clean list of members to systematically add to my ignore list.
Click to expand...
https://gbatemp.net/threads/restricted-webkit-bug-finder.378725/page-3#post-5293018

This guy is one of the lead dev's on the WiiU kernel exploit team and is primarily what I'm basing my opinion on.
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Help on 3DS prices...

Homebrew app Emulator  [Release] 3DS-CLI - Run a real RISC-V Linux environment on the Nintendo 3DS

Hardware  2 Broken 3DSes, need help

Website for finding alternative games for 3DS

Homebrew  My Secret World DS: is there a way to bypass the password lock?

Homebrew Homebrew app  [Release] GridLauncher Rosalina

please help, wont boot

Hardware  I Have 2 THQ Dev Kit 3DSes (Panda), Need Help On Preserving What’s Inside