Nintendo Switch Brew

Switch System Flaws: Difference between revisions

← Older editNewer edit →
Nwert (talk | contribs)
19 edits
mNo edit summary
Line 110: Line 110:
|-
|-
| Service access control bypass (sm:h, smhax, probably other names)
| Service access control bypass (sm:h, smhax, probably other names)
| Prior to [[3.0.1]], the service manager ("sm") built-in system module treats a user as though it has full permissions if the user creates a new "sm:" port session but bypasses [[Services_API#Initialize|initialization]].
| Prior to [[3.0.1]], the ''service manager'' (sm) built-in system module treats a user as though it has full permissions if the user creates a new "sm:" port session but bypasses [[Services_API#Initialize|initialization]]. This is due to the other sm commands skipping the service ACL check for Pids <= 7 (i.e. all kernel bundled modules) and that skipping the initialization command leaves the Pid field uninitialized.
In [[3.0.1]], "sm" returns error code 0x415 if [[Services_API#Initialize|Initialize]] has not been called yet.
In [[3.0.1]], sm returns error code 0x415 if [[Services_API#Initialize|Initialize]] has not been called yet.
| Acquiring, registering, and unregistering arbitrary services
| Acquiring, registering, and unregistering arbitrary services
| [[3.0.1]]
| [[3.0.1]]
Retrieved from "https://switchbrew.org/wiki/Switch_System_Flaws"