Switch System Flaws: Difference between revisions
facepalm |
|||
| Line 305: | Line 305: | ||
Thus, by placing an ExeFS (NSOs + "main.npdm") and setting one's desired title ID to "@Sdcard:/some_title.nsp" or "@User:/some_title.nsp" etc one can launch arbitrary unsigned code, with arbitrary unsigned NPDMs. | Thus, by placing an ExeFS (NSOs + "main.npdm") and setting one's desired title ID to "@Sdcard:/some_title.nsp" or "@User:/some_title.nsp" etc one can launch arbitrary unsigned code, with arbitrary unsigned NPDMs. | ||
This appears to have been fixed by only allowing .nsp when the input fstype==7 for the internal content-mounting function, returning 0x2EE202 otherwise. | |||
| With access to "lr": Arbitrary code execution with full system privileges. | | With access to "lr": Arbitrary code execution with full system privileges. | ||
| [[5.0.0]] | | [[5.0.0]] | ||