Hacking Wii U Browser Exploit Leaked for v4.10

[NWPlayer123]

I'm having the same problem.
What is this supposed to accomplish in the end? I was hoping for some "Hello, World!" text.

That's what hello.c does if you compile and load it

 

[Deleted User]

Come on - be patient... its being worked on...

 

[FPSRussi4]

I'm having the same problem.
What is this supposed to accomplish in the end? I was hoping for some "Hello, World!" text.

It's an opening. The exploit that has been leaked has no benefit for the end user yet, all it does is highlight the exploit in the webkit. No code that can be executed(such as homebrew, hint hint) has been released with this.

 

[Wellington2k]

Same as below...

 

[kettenschutz]

blah blubb i am Batman

 

[Kargaroc]

I'm really excited, mostly for the stuff we can learn from this.
We'll need a kernel exploit next, and that'll be really hard when we barely know anything at all about this operating system besides that it exists.

 

[filfat]

Developers/Hackers/Santa Look here
I created a new Thread for us to discuss more in depth about the actually hacking scene of the Wii U
http://gbatemp.net/threads/wii-u-hacking-discussion.367489/

 

[FPSRussi4]

Developers/Hackers/Santa Look here
I created a new Thread for us to discuss more in depth about the actually hacking scene of the Wii U
http://gbatemp.net/threads/wii-u-hacking-discussion.367489/

This is perfect, because it allows devs/hackers/santa to communicate and share progress, while end-users can sit back and observe as things that are far too complicated for them to understand take place. It's like Maxternal's Trinux thread.

 

[the_randomizer]

Think of this as the wii u's equivalent to the the "twilight hack." Once we actually have some homebrew to launch, this will need to be run every single time you want to launch an app. Far from being a homebrew channel as Mario stated hahah.

Well, it certainly is a step in the right direction

 

[NWPlayer123]

Final word: This exploit has 2 different versions: one that works on 4.0.0 to 4.0.3, and then a different one that works on 4.1.0. We'd need to develop a new ROP chain for 5.0.0 to gain code execution, because they changed stuff on us (unintentionally, of course, considering they never fixed the bug in WebKit) and so it broke, however, IT IS STILL POSSIBLE to get this working on 5.0.0, we just need to fix the ROP chain and it'll work as good as new (though when MN1 was testing it the ROP chain wasn't even executed so IDK what that was about, but it still has the weird side-effects of the bug working). However, any version after this has no guarentees of working. If you're on a really old software version and want a guarenteed way to update to a safe version, just buy and update using Mario Kart 8, which has version 4.1.0.

EDIT: Also, if you want to know, all this does is give us code execution, we still have no kernel exploit and no keys to decrypt anything important, so that's the next step after this. Plus, the web browser and whatever else is using the 1GB of memory Cafe OS reserves is still open, we'd need to get kernel access and be able to install and run new apps to have a clean slate to work with.

Basically you run the scripts using cygwin which'll compile a specified C file in src to be compiled and moved into XAMPP's htdocs.

build.sh hello.c

EDIT: You also need frame.html in htdocs in the same place.

The 2 most important posts you need to read if you have any intention of doing anything with this. And if you're looking for anything useful for the average user, look elsewhere. We use xampp and a local server for a reason, because A) it takes less time to test stuff and B) because anything you could make with this right now would be super super limited (first post I quoted) so there's no use putting it on a web server.

 

[naxil]

http://www.nintendo.co.jp/support/oss/data/WiiU_OpenSources5.0.0.zip

and here the documented bugs? right?
https://bugs.webkit.org/

 

[Marionumber1]

http://www.nintendo.co.jp/support/oss/data/WiiU_OpenSources5.0.0.zip

and here the documented bugs? right?
https://bugs.webkit.org/

Why are you looking for new bugs? The current one is still in 5.0.0's web browser.

 

[naxil]

Why are you looking for new bugs? The current one is still in 5.0.0's web browser.

No, i want understand the situation, and probably lot of people don't know that info.
Marionumber1 now all people need to stop the update (after 5.2, future update..) right?

 

[linuxares]

I have to bite the bullet and update new version(s) until I manage to get my MK8, free game.

 

[TeamScriptKiddies]

The 2 most important posts you need to read if you have any intention of doing anything with this. And if you're looking for anything useful for the average user, look elsewhere. We use xampp and a local server for a reason, because A) it takes less time to test stuff and B) because anything you could make with this right now would be super super limited (first post I quoted) so there's no use putting it on a web server.

Thanks again for the clarification. This is still a step in the right direction either way

No its just not 4 noobs at all
Theres no advantage for noobs in visiting that page with the actually nonsense exploit in it

But you dont have to start xampp or whatever, and you have just 1 user who's taking care of updates and so on
So that will be an advantage for everyone that wants to play around with that exploit

Dont really understand all those hating and ranting out here...

Scriptkiddie, what fw are you running on your U?

I'm running 4.1.0U which is what this exploit version was designed for...

 

[Skeet1983]

What update is after 4.1.0?

 

[uyjulian]

What update is after 4.1.0?

5,0,0

 

[WulfyStylez]

What update is after 4.1.0?

5.0.0.

Sniped.

 

[Skeet1983]

Ok, thanks guys

 

[rednekcowboy]

Crashes the console on 2.1.3 FW