https://dsibrew.org/w/api.php?action=feedcontributions&feedformat=atom&user=PloogleDSiBrew - User contributions [en]2026-04-17T07:12:13ZUser contributionsMediaWiki 1.43.1https://dsibrew.org/w/index.php?title=Talk:DSi_exploits&diff=1369Talk:DSi exploits2009-05-24T22:33:50Z<p>Ploogle: </p>
<hr />
<div>== Dub-T's Nintendo DSi Shop Hack ==<br />
<br />
Erm, doesn't this just follow from what I wrote on Hackmii? http://hackmii.com/2009/01/dsibrew/ --[[User:Bushing|Bushing]] 11:41, 20 April 2009 (UTC)<br />
<br />
== Kasu's Hack ==<br />
Fake ? Everyone can do that using a DSi flashcard and remove it after ! <br><br />
If it isn't a fake show us how you load the code ! --[[User:Ludo6431|Ludo6431]] 16:39, 20 April 2009 (UTC)<br />
<br />
== Exploit via Opera? ==<br />
<br />
The DSi Webbrowser is based on an older Opera 9.5/9.6 as I know and there are several security issues like the possibility of executing code through manipulated jpeg-images ([http://www.opera.com/support/kb/view/926/ here more detailed]). <br />
<br />
Wouldn't it be possible to use such a security hole to start homebrew from the SD card?<br />
<br />
<br />
'''Advantages:'''<br />
<br />
1. Opera DSi webbrowser runs in native DSi mode --> access to all DSi features<br />
<br />
2. Easy to use: Just save your homebrew on your SD card, surf to the manipulated image an execute your homebrew<br />
<br />
3. No extra game/stuff/anything needed, you just have to download the DSi webbrowser for free and then you can start using homebrew on your DSi<br />
<br />
<br />
'''Disadvantage:'''<br />
<br />
It has to be found out how to use such a security issue<br />
<br />
<br />
I have no idea if this is possible and because I don't have the skills to do that, I thought I tell your about and you say if this idea is realistic.<br />
<br />
--[[User:Makorus|Makorus]] 09:19, 9 May 2009 (UTC)<br />
<br />
This exploit use a buffer overflow by accesing to an URI (file://) with a very long adress but it's need that the file has to be in the disk. <br />
URI link with Nintendo DSi Browser doesnt't work.<br />
[http://www.zataz.com/news/18368/faille--vulnerabilite--exploit--opera.html] (link in French)<br />
<br />
--[[User:Geniusdj|Geniusdj]] 13:30, 9 May 2009 (CET)<br />
<br />
<br />
I talked especially about manipulated jpegs, because I suppose (I don't really know, but I think so) they can contain the code that shall be executed.<br />
<br />
--[[User:Makorus|Makorus]] 17:53, 9 May 2009 (UTC)<br />
<br />
I was looking for a sample of those manipulated jpegs for Opera < v9.64 and that seems that is it only a vulnerability and not an exploit. The only exploit is the one with URI : i tried two example of this : [http://milw0rm.com/exploits/7135], the browser seems to be slower and after, it's show a page that says : "Out of memory. The page may not display correctly" or "The page have a wrong path".<br />
<br />
Someone know the path to memory card of DSi ? 'Cause the exploit count on this by putting a file on the disk.<br />
<br />
--[[User:Geniusdj|Geniusdj]] 13:22, 9 May 2009 (CET)<br />
<br />
== Bannerbomb for DSi? ==<br />
<br />
I think something like ([http://www.wiibrew.org/wiki/Bannerbomb/ Bannerbomb]) should be possible, because the Firmware of the DSi is similar to the Firmware of the Wii.--[[User:Ninko|Ninko]] 20:07, 16 May 2009 (UTC)<br />
<br />
:The problem with that is that the DSi uses simple bitmaps for banners, and not the intricate proprietary format Nintendo uses. So, unless Nintendo fail at bitmap parsing, there isn't likely to be an exploit there. [[User:Muzer|Muzer]] 09:14, 17 May 2009 (UTC)<br />
<br />
::Oh, I didn't know that. [[User:Ninko|Ninko]] 18:11, 17 May 2009 (UTC)<br />
<br />
:What if you were to attempt to load a corrupted file? Does the DSi have safeguards in place to prevent a malformed bitmap from being loaded? [[User:ploogle|Ploogle]] 17:24, 24 May 2009 (GMT -8:00)<br />
<br />
== Camera or Sound Channel Exploit? ==<br />
Has anyone looked into an exploit involving loading a corrupted sound or image file into the Sound or Camera channel via the SD card? How about a purposefully corrupted filesystem on the SD card? [[User:ploogle|Ploogle]] 17:29, 24 May 2009 (GMT -8:00)</div>Plooglehttps://dsibrew.org/w/index.php?title=Talk:DSi_exploits&diff=1368Talk:DSi exploits2009-05-24T22:27:53Z<p>Ploogle: /* Bannerbomb for DSi? */</p>
<hr />
<div>== Dub-T's Nintendo DSi Shop Hack ==<br />
<br />
Erm, doesn't this just follow from what I wrote on Hackmii? http://hackmii.com/2009/01/dsibrew/ --[[User:Bushing|Bushing]] 11:41, 20 April 2009 (UTC)<br />
<br />
== Kasu's Hack ==<br />
Fake ? Everyone can do that using a DSi flashcard and remove it after ! <br><br />
If it isn't a fake show us how you load the code ! --[[User:Ludo6431|Ludo6431]] 16:39, 20 April 2009 (UTC)<br />
<br />
== Exploit via Opera? ==<br />
<br />
The DSi Webbrowser is based on an older Opera 9.5/9.6 as I know and there are several security issues like the possibility of executing code through manipulated jpeg-images ([http://www.opera.com/support/kb/view/926/ here more detailed]). <br />
<br />
Wouldn't it be possible to use such a security hole to start homebrew from the SD card?<br />
<br />
<br />
'''Advantages:'''<br />
<br />
1. Opera DSi webbrowser runs in native DSi mode --> access to all DSi features<br />
<br />
2. Easy to use: Just save your homebrew on your SD card, surf to the manipulated image an execute your homebrew<br />
<br />
3. No extra game/stuff/anything needed, you just have to download the DSi webbrowser for free and then you can start using homebrew on your DSi<br />
<br />
<br />
'''Disadvantage:'''<br />
<br />
It has to be found out how to use such a security issue<br />
<br />
<br />
I have no idea if this is possible and because I don't have the skills to do that, I thought I tell your about and you say if this idea is realistic.<br />
<br />
--[[User:Makorus|Makorus]] 09:19, 9 May 2009 (UTC)<br />
<br />
This exploit use a buffer overflow by accesing to an URI (file://) with a very long adress but it's need that the file has to be in the disk. <br />
URI link with Nintendo DSi Browser doesnt't work.<br />
[http://www.zataz.com/news/18368/faille--vulnerabilite--exploit--opera.html] (link in French)<br />
<br />
--[[User:Geniusdj|Geniusdj]] 13:30, 9 May 2009 (CET)<br />
<br />
<br />
I talked especially about manipulated jpegs, because I suppose (I don't really know, but I think so) they can contain the code that shall be executed.<br />
<br />
--[[User:Makorus|Makorus]] 17:53, 9 May 2009 (UTC)<br />
<br />
I was looking for a sample of those manipulated jpegs for Opera < v9.64 and that seems that is it only a vulnerability and not an exploit. The only exploit is the one with URI : i tried two example of this : [http://milw0rm.com/exploits/7135], the browser seems to be slower and after, it's show a page that says : "Out of memory. The page may not display correctly" or "The page have a wrong path".<br />
<br />
Someone know the path to memory card of DSi ? 'Cause the exploit count on this by putting a file on the disk.<br />
<br />
--[[User:Geniusdj|Geniusdj]] 13:22, 9 May 2009 (CET)<br />
<br />
== Bannerbomb for DSi? ==<br />
<br />
I think something like ([http://www.wiibrew.org/wiki/Bannerbomb/ Bannerbomb]) should be possible, because the Firmware of the DSi is similar to the Firmware of the Wii.--[[User:Ninko|Ninko]] 20:07, 16 May 2009 (UTC)<br />
<br />
:The problem with that is that the DSi uses simple bitmaps for banners, and not the intricate proprietary format Nintendo uses. So, unless Nintendo fail at bitmap parsing, there isn't likely to be an exploit there. [[User:Muzer|Muzer]] 09:14, 17 May 2009 (UTC)<br />
<br />
::Oh, I didn't know that. [[User:Ninko|Ninko]] 18:11, 17 May 2009 (UTC)<br />
<br />
:What if you were to attempt to load a corrupted file? Does the DSi have safeguards in place to prevent a malformed bitmap from being loaded? [[User:ploogle|Ploogle]] 17:24, 24 May 2009 (GMT -8:00)</div>Ploogle