Switch System Flaws: Difference between revisions
mNo edit summary |
|||
Line 110: | Line 110: | ||
|- | |- | ||
| Service access control bypass (sm:h, smhax, probably other names) | | Service access control bypass (sm:h, smhax, probably other names) | ||
| Prior to [[3.0.1]], the service manager ( | | Prior to [[3.0.1]], the ''service manager'' (sm) built-in system module treats a user as though it has full permissions if the user creates a new "sm:" port session but bypasses [[Services_API#Initialize|initialization]]. This is due to the other sm commands skipping the service ACL check for Pids <= 7 (i.e. all kernel bundled modules) and that skipping the initialization command leaves the Pid field uninitialized. | ||
In [[3.0.1]], | In [[3.0.1]], sm returns error code 0x415 if [[Services_API#Initialize|Initialize]] has not been called yet. | ||
| Acquiring, registering, and unregistering arbitrary services | | Acquiring, registering, and unregistering arbitrary services | ||
| [[3.0.1]] | | [[3.0.1]] |