3DS System Flaws: Difference between revisions
Deckofnoobs (talk | contribs) |
EvilFlight (talk | contribs) No edit summary |
||
| Line 537: | Line 537: | ||
|- | |- | ||
| DSiWare import/export functions allow TWL system titles as arguments | | DSiWare import/export functions allow TWL system titles as arguments | ||
| AM ImportTwlBackup/ExportTwlBackup unnecessarily allow TWL system titles such as DS Download Play to import/export from userland (only am:sys is needed). This is difficult to abuse for dsihax injection because no TWL system title has a save file, and any import with a save included will result in FS err C8804464. However, there is at least one dsihax primary that can load a payload from a non-NAND source, and not error if it can't access its public.sav (JPN Flipnote Studio v0). | | AM ImportTwlBackup/ExportTwlBackup unnecessarily allow TWL system titles such as DS Download Play to import/export from userland and System Settings -> Data Management (only am:sys is needed for userland). This is difficult to abuse for dsihax injection because no TWL system title has a save file, and any import with a save included will result in FS err C8804464. However, there is at least one dsihax primary that can load a payload from a non-NAND source, and not error if it can't access its public.sav (JPN Flipnote Studio v0). | ||
| When combined with other public vulns, arm9 code execution. | | When combined with other public vulns, arm9 code execution. | ||
| None. | | None. | ||