WiiBrew

Changes

Wii system flaws (view source)

Revision as of 20:45, 9 December 2021

813 bytes removed ,  20:45, 9 December 2021
→‎boot0: removed section since the bug was moved to /Untested
Line 38: Line 38:  
| {{SortableMonth|Dec|2006}}
 
| {{SortableMonth|Dec|2006}}
 
| tmbinc
 
| tmbinc
|}
  −
  −
== boot0 ==
  −
{| class="wikitable sortable" border="1"
  −
|-
  −
!  Summary
  −
!  Description
  −
!  Successful exploitation result
  −
!  Fixed in boot0 version
  −
!  Discovered
  −
!  Discovered by
  −
|-
  −
|  Dead jump instruction after jump to panic {{Anchor|boot0-skippanic}}
  −
|  [[boot0]] has a common panic routine that runs under a number of scenarios, one of which is when the [[boot1]] hash check fails. For unknown reasons, there is an extra jump to the normal boot1 loading code after panic returns ([[boot0/Code dump|offset FFFF04E0]]), despite panic never having any possibility of returning. It may be possible to time a voltage attack correctly to skip over the jump-to-panic instruction, allowing for certain recovery software.
  −
|  Bypassing the boot1 hash check
  −
|  Unfixed
  −
|  {{SortableMonth|May|2021}}
  −
|  {{User|Hallowizer}}
   
|}
 
|}
  
Hallowizer
5,579

edits

Retrieved from "https://wiibrew.org/wiki/Special:MobileDiff/115522"