| View previous topic :: View next topic |
| Author |
Message |
Johnman
Joined: 17 Dec 2006
Posts: 10
Digg It |
 Posted: Thu Mar 01, 2007 7:27 pm Post subject: Possible Booting Idea |
|
|
Well, I was thinking about DS homebrew, and I thought about the WifiMe method that can be used on older DSes. Now, I'm not suggesting that we use the Wii's wifi system to run homebrew, but the way WifiMe worked.
WifiMe (if you already know how WifiMe works, skip this paragraph) makes use of WMD and sends a "game" to the DS. The game really is just the header (I believe it's just the header) of a dump of MarioKart DS. The only difference is, there was an unsigned pointer, to where the data started in memory, that was changed to point to the GBA slot. Homebrew was then able to be ran from the GBA slot.
It's unlikely, Nintendo has probably learned from their mistake, but there might be a similar unsigned pointer that would allow us to point to say an SD card, or maybe, a gamecube disc. If a similar flaw exists (which I doubt it does, but I am putting it out here) we could run GC homebrew, but perhaps with access to the Wii hardware. |
|
| Back to top |
|
 |
DSPABLO
Joined: 20 Nov 2006
Posts: 3
Digg It |
| Posted: Fri Mar 02, 2007 6:41 am Post subject: |
|
|
| I did not know this was how WifiMe worked, so this was an enlightening idea for me to see. I agree with you that Nintendo probably learned from their mistakes, however, that being let's look at Sony for a moment. No matter how many times they patch gaping holes in their system firmwares for the PSP found by hackers, there is inevitably a similar or at least similarly useful hack found in the new patched firmware. my point is that it is likely, even plausible that though nintendo manage to fix any similar hole in the wii, and altered any unsigned pointers, they may have overlooked something else or another unsigned pointer elsewhere. I think this is an excellent idea and worth at least looking into. |
|
| Back to top |
|
|
Snark
Joined: 28 Dec 2006
Posts: 115
Digg It |
| Posted: Sun Mar 04, 2007 1:33 pm Post subject: |
|
|
| People have already been working at something like that for a while now by trying to spoof the shop channel server or the update server so that they could get unsigned code onto the Wii, but have so far been unsuccessful. |
|
| Back to top |
|
|
Johnman
Joined: 17 Dec 2006
Posts: 10
Digg It |
| Posted: Tue Mar 06, 2007 1:53 am Post subject: |
|
|
| Did you miss the first line? I said there that it would NOT involve the Wii's wifi or network connection. My suggestion would be to use a flaw similar to how the PassMe2 or Wifime methods work on the DS. Where they used an altered dump of a signed game to tell the DS to start reading the game info from the GBA port. If the Wii sees the Wii Discs and GC Discs as different "positions", perhaps we could tell it to start the game from a point on a GC disc, in effect allowing us to boot "unsigned" code because it was booted from a signed game. And hopefully, if it's reading from this possible "GC Bank" it wouldn't expect the code to be encrypted. |
|
| Back to top |
|
|
Cryptic
Joined: 14 Feb 2007
Posts: 6
Location: Somewhere most defenetly
Digg It |
| Posted: Tue Apr 03, 2007 7:24 am Post subject: |
|
|
Snark has a point but it's probably easyer to hack one of the rom games you can download.  |
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
