|
|
| Line 312: |
Line 312: |
|
| |
|
| === ARM11 system applications and applets === | | === ARM11 system applications and applets === |
| {| class="wikitable" border="1"
| | See [[3DS_Userland_Flaws|here]]. |
| |-
| |
| ! Summary
| |
| ! Description
| |
| ! Successful exploitation result
| |
| ! Fixed in system version
| |
| ! Last system version this flaw was checked for
| |
| ! Timeframe this was discovered
| |
| ! Discovered by
| |
| |-
| |
| | 3DS [[System Settings]] DS profile string stack-smash
| |
| | Too long or corrupted strings (01Ah 2 Nickname length in characters 050h 2 Message length in characters) in the NVRAM DS user settings (System Settings->Other Settings->Profile->Nintendo DS Profile) cause it to crash in 3DS-mode due to a stack-smash. The DSi is not vulnerable to this, DSi launcher(menu) and DSi System Settings will reset the NVRAM user-settings if the length field values are too long(same result as when the CRCs are invalid). TWL_FIRM also resets the NVRAM user-settings when the string-length(s) are too long. | |
| | ROP in mset.
| |
| | [[7.0.0-13]]
| |
| | [[7.0.0-13]]
| |
| | 2012
| |
| | [[User:Ichfly|Ichfly]]
| |
| |}
| |
|
| |
|
| === General/CTRSDK === | | === General/CTRSDK === |