• The Wii U scene has been up in arms over a web browser exploit that was recently leaked (then later on, officially released).
    Though the files were only recently leaked, Nintendo had already partially patched the exploit in firmware 5.0.

    Wii-u Browser exploit tested on a PS Vita causing an infinite loop on (Ps vita) browser. heleius made a youtube video, showing that loop with this exploit. Thist raised some questions about a possible CFW. Eitherway this is good thing for further exploring Ps Vita’s vulnerabilities. As you may see, wololo team and specially heleius are in the *zone*, razor-sharp as always.

    To quote:

    The files are readily available to the public, but won’t do anyone without access to a web server any good (though it’s reasonably easy for anyone to set on up on their local network. If required, some tools will definitely show up).  I personally don’t own a Wii U but we all know that leaks hurt any scene more than they help. That being said, since the files are readily available I decided to test them out. On the PC the exploit simply shows up as an empty iframe, but when tested on on the Vita, this exploit appears to put the Vita into an infinite loop on the browser. I made a YouTube video of the exploit in action on my Vita you can watch below.

    For those of you reading this on your Vita you can check out the Wii U browser exploit in action by following this link. http://hackinformer.com/p/wiiu/index.html

    So what does this mean for the Vita, could a possible native Vita hack come from this? In the hands of the right devs could this lead to the first Vita CFW? Or is it little more than an auto reloading browser?

    Don’t get your hopes too high: Fail0verflow had explained a while ago that the reason such exploits can run on the Wii U is because the NX bit is not set within the browser on the Wii U. This, as far as we know, is not the case on the PS Vita (and has been confirmed at least by Yifan Lu here).

    Nonetheless, it is interesting to see this Wii U hack running on our beloved handheld, and people might find additional vulnerabilities on the Vita that could make this useful eventually.

    [Source] = Wololo

    Follow Helius on twitter.

    Discuss in Forums (23)


  • 23 Comments

    1. SonyUSA
      06-20-2014
      10:40 PM
      1

      Nah, it's not causing a crash so it's not useful for exploiting.

    2. tjhooker73
      06-20-2014
      10:53 PM
      2

      Originally Posted by SonyUSA
      Nah, it's not causing a crash so it's not useful for exploiting.
      Well that's what the articles are explaining

      Sent from my One X using Tapatalk

    3. DjKlown
      06-20-2014
      11:08 PM
      3

      U dont need it to crash.... ucan sinply hook it inbetween a cycle... should do the trixk.. . Just have to make sure u can map it and keep it

    4. hellsing9
      06-21-2014
      12:31 AM
      4

      Originally Posted by SonyUSA
      Nah, it's not causing a crash so it's not useful for exploiting.
      A crash could lead to something, gives you enough gap to try many things. Also the idea when someone posts an article, even if it's copy/pasted is to read it.

      On the PC the exploit simply shows up as an empty iframe...
      Clearly you don't have any idea how a exploit works. No offense.

      Exploit_(computer_security)

    5. AlexBaka
      06-22-2014
      01:39 AM
      5

      meh...has just updated my WiiU. Regret nothing but buying wiiU

    6. svenmullet
      06-22-2014
      01:02 PM
      6

      Just for sh1tz'n'giggles I loaded the exploit page on my android phone browser... and it crashed it. I had to reboot the phone before the web browser would work again (white screen, unresponsive to any input)

    7. tjhooker73
      06-22-2014
      01:32 PM
      7

      Originally Posted by svenmullet
      Just for sh1tz'n'giggles I loaded the exploit page on my android phone browser... and it crashed it. I had to reboot the phone before the web browser would work again (white screen, unresponsive to any input)
      Your WebKit version is probably venerable. What phone do you have?

      Sent from my One X using Tapatalk

    8. svenmullet
      06-22-2014
      06:03 PM
      8

      Originally Posted by tjhooker73
      Your WebKit version is probably venerable. What phone do you have?

      Sent from my One X using Tapatalk
      Galaxy S3 running 4.3

    9. nitr8
      06-22-2014
      06:37 PM
      9

      Originally Posted by svenmullet
      Galaxy S3 running 4.3
      Maybe vulnerable to rooting without tripping KNOX?

      Gesendet von meinem SM-N9005 mit Tapatalk 2

    10. tangotnt
      06-22-2014
      06:48 PM
      10

      Originally Posted by nitr8
      Maybe vulnerable to rooting without tripping KNOX?

      Gesendet von meinem SM-N9005 mit Tapatalk 2
      One can only hope,
      Maybe one click jailbreak for ios (like in the old days)
      but in all reality (Infinite loop)


      Sent from my SGH-T999 using Tapatalk 2

    11. tjhooker73
      06-22-2014
      08:09 PM
      11

      Originally Posted by tangotnt
      One can only hope,
      Maybe one click jailbreak for ios (like in the old days)
      but in all reality (Infinite loop)


      Sent from my SGH-T999 using Tapatalk 2
      Apple keeps safari and any WebKit versions secure and new. So no more web hacks like before.
      But it might be possible. Maybe team evasi0n can work with it.


      Sent from my One X using Tapatalk

    12. tjhooker73
      06-22-2014
      08:10 PM
      12

      Originally Posted by svenmullet
      Galaxy S3 running 4.3
      Post about it on XDA and maybe some devs can look into some rooting or boot loader unlocking.

      Sent from my One X using Tapatalk

    13. ah394496
      06-22-2014
      10:49 PM
      13

      As a Wii U owner this was kind of cool news... but without anything to actually install with it I found it rather pointless. Hooray, I guess. but making it public knowledge before any kind of CFW can be installed just means Nintendo will kill it ASAP.

    14. SonyUSA
      06-22-2014
      11:09 PM
      14

      I'm not sure how people think this is suddenly the miracle hacking cure for every platform in existence. It doesn't even really mean a whole lot for WiiU except access to a VERY limited user space. Will it lead to a full WiiU access? Maybe... Would you ever use it to root an android phone? A PSP? PS4? No, never.

    15. nitr8
      06-22-2014
      11:53 PM
      15



      Gesendet von meinem SM-N9005 mit Tapatalk 2

    16. tjhooker73
      06-23-2014
      12:30 AM
      16

      Originally Posted by SonyUSA
      I'm not sure how people think this is suddenly the miracle hacking cure for every platform in existence. It doesn't even really mean a whole lot for WiiU except access to a VERY limited user space. Will it lead to a full WiiU access? Maybe... Would you ever use it to root an android phone? A PSP? PS4? No, never.
      It has possible uses on any device with a venerable WebKit/etc version it just needs to be modified

      Sent from my One X using Tapatalk

    17. rocker48
      06-23-2014
      12:56 AM
      17

      Dx

      Sent from my HTC Desire 816 dual sim using Tapatalk

    18. Juggahax0r
      06-23-2014
      10:27 AM
      18

      This isn't an exploit really ... It doesn't do anything in the kernel, it's a usermode exploit ... And it will be patched for sure now with a firmware update, it should have been kept secret until it was explored more for a way to get into the kernel and actually run unsigned code (in kernel mode)... In short; this is useless without an actual kernel exploit ... I don't see why sites keep front paging this, if anything it will only make homebrew less likely in the near future.


      Edit : After watching the 30c3 lecture, this appears also to be very old ... Not useless, since it gives you information , but useless in terms of getting to homebrew with it.. Seems to be bringing up the full Wii U hardware through vWii and loading a decrypted Wii U binary would be at least one way to exploit Wii U mode though... Bringing up the full hardware being quite important though.

    19. Lafgura
      06-23-2014
      07:16 PM
      19

      Nah, it's not causing a crash so it's not useful for exploiting.

    20. Juggahax0r
      06-23-2014
      10:28 PM
      20

      Crashing or not isn't a good gauge anyhow .... It's in userland only ... It is however a good way to get Kernel info useful for finding an exploit ... BUT, and it's a good BUT , it may be useful in finding a kernel exploit.

      Wii U clearly doesn't use a hypervisor to protect memory ... Hypervisor just being a fancy word for virtual machine manager .... Watching their talk clearly shows they aren't going to release what they know because 'hombrew' will enable piracy, anytime you run unsigned code without a sandbox piracy is also possible.

      Honestly Sony would have been smart just leaving OtherOS intact, then the piracy minded people would have no reason to hack the rest of the system.

      They are however starting to make games for Linux now ... Metro: Last night Is the only real example I can give currently, But i've been using SteamOS to stream my Windows games for a few months now through the beta updates ... The rest of the current Linux/SteamOS games are just crap. Currently.

      Once they start making more Linux/Mac OS games, Windows gaming market share will drop .. As it is right now , that's about the only way play games on PC though.

      PS4/Linux game uses OpenGL not directX ... It's not new. Porting this gen isn't even a matter or portabilty, just compiling for a different SDK; They already run the same x86-64 code.

      This generation will look more like the original XBOX, meaning we should see more ACTUAL homebrew .... PS3 was really just piracy; Oldschool EMUS (SNES, NES etc) Yea show a group of 10 people who actually rip those ROMs from a CART and you can prove me wrong. Same thing on X360, all piracy related homebrew ...

      Other than that, nothing 'homebrew' on it was for anything not piracy related .... Unless you want to try and count Showtime and maybe a handful of others. Even then How many were playing legit movies? Maybe the people who made the app and copied their discs too video files?

      Better Hellsing9?

    21. hellsing9
      06-23-2014
      11:11 PM
      21

      [MENTION=262787]Juggahax0r[/MENTION] please use some proper punctuation. Having a bad time trying to read what you've posted.

    22. Juggahax0r
      06-23-2014
      11:18 PM
      22

      Sorry i'm dr*** ... I can't see the proper line breaks right now .... Shouldn't try discounting my opinion based on that anyway .... I just talk on IRC more than through forums .... I'll see if I can't break the lines better in a few minutes ... Or tomorrow morning

    23. klahjn
      07-19-2014
      06:55 PM
      23

      I actually do have several game titles/systems, in my shed, office, and storage. I'd rather not pull the originals out of their cases to ensure they are undamaged.
      My playstation 3 runs those backups perfectly. I didn't rip it directly from the cart, but I have the copy at a residence with my name on it. So the whole "retro gaming is piracy" literally invalidates your entire argument.

      I have LEGITIMATE users that actually pay me to process backups of their titles. They HAND ME THE DISC TO BACKUP, I back it up to their system, and they put the disc on the shelf out of little kids reach. They lock the playstation 3 away and only have the controller available. I use tools like webman to run those backups, transfer, and keep the system running smooth. I use the additional fan controls to keep the playstation 3 cool. I also use CFW to play PS2 titles on my slim, something originally promised by sony for the playstation 3 then taken away.
      Oh, and just so you know, yes, there is a playstation 2 that just had a lens go out within 10 feet of me. in the shed i have over 50 titles that sit in the cases NOT being scratched.

      My gamefly subscription takes care of my "testing" of games. I use XMB MOD Manager to customize the waves and such easily. I use remoteplay patch to control my machine from the pc while i watch tv. I use mmOS to copy files from the system storage to usb and vice versa when my pc is busy completing other tasks.

      I am ONE of MANY that use our playstation 3 to the maximum it was intended to. NOT for piracy, but for the fact that I paid for something, bet your hind end i'm going to use it to its full potential. After all, this is MY unit. I paid for it. If someone wants to tell me how to use it, or prevent me from using features, then i'm going to get paid for doing so.