SHIINBLOG

異議有りッ!!~numeblog

3ds/wiiuの改造やカービィ/ミリオンアーサーなどについて書いていくブログです

RPwnG 2ndexeploitとして復活か?

お?

https://www.3dbrew.org/wiki/3DS_Userland_Flaw

RPG Maker Fes/Player Buffer overflow on .bss section When loading a project, the game copies multiple chunks over the BSS section. However the number of chunks to copy is not checked, thus a large amount of chunk result in a buffer overflow. There's multiple way to exploit this flaw to gain an arbitrary memcpy or an arbitrary jump. None? App: ? August 28, 2017 August, 2017 MrNbaYoh
RPG Maker Fes/Player Buffer overflow via unchecked file size When loading a project, the game loads the file to a 0x200000 bytes long buffer. However the size remains unchecked, so with a big enough file one can overflow the buffer and overwrite a thread stack and then achieve ROP. None? App: ? August 29, 2017 August, 2017