3dbrew

3DS System Flaws: Difference between revisions

← Older editNewer edit →
Line 291: Line 291:
!  Timeframe this was discovered
!  Timeframe this was discovered
!  Discovered by
!  Discovered by
|-
| [[HID_Services|HID]] module shared-mem
| HID module does not validate the index values in [[HID_Shared_Memory|sharedmem]](just changes index to 0 when index == maxval when updating), therefore large values will result in HID module writing HID data to arbitrary addresses.
| ROP under HID module, but this is *very* unlikely to be exploitable since the data written is HID data.
| Probably none?
| [[9.0.0-20]]
| 2014?
| [[User:Yellows8|Yellows8]]
|-
|-
| gspwn
| gspwn
Retrieved from "https://www.3dbrew.org/wiki/3DS_System_Flaws"