3dbrew

3DS System Flaws: Difference between revisions

← Older editNewer edit →
Line 296: Line 296:
!  Description
!  Description
!  Successful exploitation result
!  Successful exploitation result
!  Fixed in system version
!  Fixed in system-module system-version
!  Last system version this flaw was checked for
!  Last system-module system-version this flaw was checked for
!  Timeframe this was discovered
!  Timeframe this was discovered
!  Discovered by
!  Discovered by
Line 320: Line 320:
| HID module does not validate the index values in [[HID_Shared_Memory|sharedmem]](just changes index to 0 when index == maxval when updating), therefore large values will result in HID module writing HID data to arbitrary addresses.
| HID module does not validate the index values in [[HID_Shared_Memory|sharedmem]](just changes index to 0 when index == maxval when updating), therefore large values will result in HID module writing HID data to arbitrary addresses.
| ROP under HID module, but this is *very* unlikely to be exploitable since the data written is HID data.
| ROP under HID module, but this is *very* unlikely to be exploitable since the data written is HID data.
| Probably none?
| None
| [[9.0.0-20]]
| [[9.3.0-21]]
| 2014?
| 2014?
| [[User:Yellows8|Yellows8]]
| [[User:Yellows8|Yellows8]]
Retrieved from "https://www.3dbrew.org/wiki/3DS_System_Flaws"