Changes

| movable.sed keyY vulnerable to brute-force

| movable.sed keyY vulnerable to brute-force

| Half of the movable.sed keyY's 128 bits are leaked through the LFCS, which is available in userland and below. The LFCS itself also leaks almost half of the remaining bits by following the ratio: u32 keyY[3]=1/5(LFCS). The remaining keyY[3] uncertainty of about ±2000 can be greatly reduced by plotting expected error margins with several keyYs. This results in a final uncertainty of about 2^40, easily within practical brute force range of an average modern PC.

| Half of the movable.sed keyY's 128 bits are leaked through the LFCS, which is available in userland and below. The LFCS itself also leaks almost half of the remaining bits by following the ratio: u32 keyY[3]=1/5(LFCS). The remaining keyY[3] uncertainty of about ±2000 can be greatly reduced by plotting expected error margins with several keyYs. This results in a final uncertainty of about 2^40, easily within practical brute force range of an average modern PC.

| Knowing the keyY of a given 3ds allows for modification of dsiware export contents, and chained with several other public vulns, ultimately arm9 execution.

| Knowing the keyY of a given 3ds allows for modification of DSiWare export contents, and chained with several other public vulns, ultimately arm9 execution.

| None.

| None.

| 11.6.0-X

| 11.6.0-X

| January 2018

| January 2018

| zoogie

| zoogie

|-

|-

| [[Gamecard_Services_PXI]] unchecked REG_CTRCARDCNT transfer-size

| [[Gamecard_Services_PXI]] unchecked REG_CTRCARDCNT transfer-size