The-Homebrew-Cloud/JsTypeHax
2
0
Fork 0
mirror of https://github.com/wiiu-env/JsTypeHax.git synced 2024-11-18 00:19:15 +01:00
Code Issues Packages Projects Releases Wiki Activity
21 Commits 1 Branch 0 Tags 127 KiB
PHP 95.3%
Hack 4.7%
15154d5548
Go to file
orboditilt 15154d5548 Rename index.php to index-hax.php
2019-01-15 11:17:42 +01:00
index-hax.php Rename index.php to index-hax.php 2019-01-15 11:17:42 +01:00
README.md Use a different ropchaintype to increase stability. 2019-01-13 13:19:20 +01:00
wiiuhaxx_common_cfg.php Use a different ropchaintype to increase stability. 2019-01-13 13:19:20 +01:00

README.md

JsTypeHax

Wii U browser exploit for system version 5.5.2 and 5.5.3.
Requires a valid payload ("code550.bin") in the root dir and the release files from the wiiuhaxx_common repo inside a subfolder called "wiiuhaxx_common".

The environment after getting code execution is very fragile. It's recommended to use the JsTypeHax_payload to get into a limited, but stable one.

Requirements

A webserver with php support.

The bug

CVE-2013-2857, Use after free https://bugs.chromium.org/p/chromium/issues/detail?id=240124 .

Credits

  • JumpCallPop, jam1garner, hedgeberg: Inital exploit
  • yellows8: ROP
  • orboditilt: increasing stability