Nintendo Switch Brew

Switch System Flaws: Difference between revisions

← Older edit
 
Line 1,189: Line 1,189:


[22.0.0+] This was fixed by clamping the count to a maximum of 0x4.
[22.0.0+] This was fixed by clamping the count to a maximum of 0x4.
| OOB datacopy into object state. Allows leaking arbitary handles, including on [S2] (such as process-handle, sm, [[SPL_services|spl:mig]]).
| OOB datacopy into object state. Allows leaking arbitary [[NFC_services|handles]], including on [S2] (such as process-handle, sm, fsp-srv (remaining services can also be used via sm)).
| [[22.0.0]]
| [[22.0.0]]
| [[22.0.0]]
| [[22.0.0]]
Retrieved from "https://switchbrew.org/wiki/Switch_System_Flaws"