|(8 intermediate revisions by the same user not shown)|
| || |
'''Savezelda''' is a
family of exploits that take the same general form and use some common code to load [[homebrew]]. The name comes from the original savezelda exploit, [[ Twilight Hack]], which was a Legend of Zelda exploit. |+|
'''Savezelda''' is a exploits. The name comes from the original exploit , [], .
| || |
Savezelda exploits== |+|
|−|* [[ Twilight Hack]] |+|
[] []of the []
|−|* [[ Letterbomb]] | |
|−|* [[Bathaxx]] | |
|−|* [[Indiana Pwns]] | |
|−|* [[Return of the Jodi]] | |
|−|* [[ Eri HaKawai]] | |
| || |
|−|==How these work== |+|
'is loaded a of the code .
|−|These exploits take advantage of the fact that the Wii does not implement any address space layout randomization (ASLR), which means the moment a size isn' t checked before something is loaded , the memory address where this is loaded is predetermined, so a fixed amount of padding can be added before a return address on the stack can be overwritten, which will happen perfectly every time. Doing this causes the system or game to send control over to the desired area. These exploits also package some code that can be returned to, which allows them to take full control over the Wii, and load other things such as the HackMii Installer. | |
Latest revision as of 02:06, 7 May 2021
Savezelda is a small loader designed to be bundled with exploits. The name comes from Twilight Hack, the original exploit to use this loader, although the name did not come about until Indiana Pwns was released. Its sole purpose is to load
/boot.elf from SD or USBGecko, SD taking priority.
Some exploits, such as FlashHax and str2hax, have a slightly modified copy of Savezelda. They are built on the same core, but there is also a default target of the HackMii Installer. FlashHax accomplishes this by bundling the binary into Savezelda, while str2hax manually downloads the installer.
Bluebomb's stage1 is also loaded by a modified version of Savezelda from memory; the USB code is separate.