3DS Userland Flaws: Difference between revisions
| Line 106: | Line 106: | ||
| November 5, 2016 | | November 5, 2016 | ||
| [[User:Nba_Yoh|MrNbaYoh]] | | [[User:Nba_Yoh|MrNbaYoh]] | ||
|- | |||
| Steel Diver : Sub Wars | |||
| Heap overflow / arbitrary memcpy | |||
| Savefile datas are stored as key/value pairs, a large enough string key makes the game overwrite a memcpy source/destination addresses and size arguments. So one can actually memcpy a rop on the stack and gain control of the execution flow. | |||
| None | |||
| System: [[11.2.0-35]]. | |||
| December 27, 2016 | |||
| Around July 15, 2016 | |||
| [[User:Nba_Yoh|MrNbaYoh]], Vegaroxas | |||
|} | |} | ||