Trash:Talk:Internet Browser: Difference between revisions

(6 intermediate revisions by 3 users not shown)

Line 16:

Long story short, nothing gets overwritten. Just an attempt at using a NULL pointer. This is only a theory though, I may be wrong. --[[User:Luigi2us|Luigi2us]] 01:40, 13 August 2011 (CEST)

It seems to be not exploitable, I have tried to write some NOPs into memory after the 'exploit' code and it doesn't seem to work.--[[User:Lazymarek9614|Lazymarek9614]] 18:37, 11 September 2011 (CEST)

Well I have seen a Google Chrome exploit that uses a null pointer. It executes the nopsled and the shellcode so that it generates an exception.

I think that if you try that exploit on Chrome on your computer, it still works(I tried it on version 15.0.865.1000 with sandbox disabled, and it generated an exception(a few times). So I think that's a sign that Google and the Chromium team still haven't fixed the exploit yet, but my antivirus detects it). But what I said might be wrong and misleading. And sometimes null pointer dereferencing can be exploitable if you try and think harder. --[[User:Kiddyshaq34|Kiddyshaq34]] 22:00, 03 September 2011 (GMT)

Line 24:

Line 29:

The exploit used can be seen here... http://www.exploit-db.com/exploits/16974/ --[[User:Madshaun1984|Madshaun1984]] 23:27, 01 September 2011 (GMT)

I've got a link if anyone wants to try it out: http://db.tt/D3hmZJE --[[User:Kiddyshaq34|Kiddyshaq34]] 23:19, 02 September 2011 (GMT)

Not to mention, the 3DS hardware is surely a lot different from Android/phones. Scriptkiddyish attempts like running Android exploits on a 3DS will not work. --[[User:Luigi2us|Luigi2us]] 15:35, 2 September 2011 (CEST)

Line 30:

Line 36:

The webkit has a lot of android based code in it... therefore it is not unreasonable to think that maybe (just maybe) and android based exploit would have an effect on the 3DS. My assumptions werent just based on the browsers webkit either... what other platforms do you know that run on arm cpu's and use the .APP file extension? Then theres the whole QR code compatibility, that seems all to similar to pre-existing android software... Now dont get me wrong im not suggesting that the 3DS is running android, but it seems to be some sort of hybrid that has some compatibility with android, of course my assumptions and theory's could be well off... but i'll leave it to you to prove me wrong. --[[User:Madshaun1984|Madshaun1984]] 19:02, 02 September 2011 (GMT)

And again a boring way freeze the web browser:

http://dl.dropbox.com/u/41173070/3ds_web_browser_freeze_click.html --[[User:Lazymarek9614|Lazymarek9614]] 18:03, 13 September 2011 (CEST)

Here's a shortened link: http://tinyurl.com/6enaawc --[[User:Kiddyshaq34|Kiddyshaq34]] 20:15, 13 September 2011 (BST)

@@ Line 16: / Line 16: @@
 Long story short, nothing gets overwritten. Just an attempt at using a NULL pointer. This is only a theory though, I may be wrong. --[[User:Luigi2us|Luigi2us]] 01:40, 13 August 2011 (CEST)
+It seems to be not exploitable, I have tried to write some NOPs into memory after the 'exploit' code and it doesn't seem to work.--[[User:Lazymarek9614|Lazymarek9614]] 18:37, 11 September 2011 (CEST)
+Well I have seen a Google Chrome exploit that uses a null pointer. It executes the nopsled and the shellcode so that it generates an exception.
+I think that if you try that exploit on Chrome on your computer, it still works(I tried it on version 15.0.865.1000 with sandbox disabled, and it generated an exception(a few times). So I think that's a sign that Google and the Chromium team still haven't fixed the exploit yet, but my antivirus detects it). But what I said might be wrong and misleading. And sometimes null pointer dereferencing can be exploitable if you try and think harder.  --[[User:Kiddyshaq34|Kiddyshaq34]] 22:00, 03 September 2011 (GMT)
@@ Line 24: / Line 29: @@
 The exploit used can be seen here... http://www.exploit-db.com/exploits/16974/ --[[User:Madshaun1984|Madshaun1984]] 23:27, 01 September 2011 (GMT)
+I've got a link if anyone wants to try it out: http://db.tt/D3hmZJE --[[User:Kiddyshaq34|Kiddyshaq34]] 23:19, 02 September 2011 (GMT)
 Not to mention, the 3DS hardware is surely a lot different from Android/phones. Scriptkiddyish attempts like running Android exploits on a 3DS will not work. --[[User:Luigi2us|Luigi2us]] 15:35, 2 September 2011 (CEST)
@@ Line 30: / Line 36: @@
 The webkit has a lot of android based code in it... therefore it is not unreasonable to think that maybe (just maybe) and android based exploit would have an effect on the 3DS. My assumptions werent just based on the browsers webkit either... what other platforms do you know that run on arm cpu's and use the .APP file extension? Then theres the whole QR code compatibility, that seems all to similar to pre-existing android software... Now dont get me wrong im not suggesting that the 3DS is running android, but it seems to be some sort of hybrid that has some compatibility with android, of course my assumptions and theory's could be well off... but i'll leave it to you to prove me wrong.  --[[User:Madshaun1984|Madshaun1984]] 19:02, 02 September 2011 (GMT)
+And again a boring way freeze the web browser:
+http://dl.dropbox.com/u/41173070/3ds_web_browser_freeze_click.html --[[User:Lazymarek9614|Lazymarek9614]] 18:03, 13 September 2011 (CEST)
+Here's a shortened link: http://tinyurl.com/6enaawc --[[User:Kiddyshaq34|Kiddyshaq34]] 20:15, 13 September 2011 (BST)