Nintendo Switch Running FreeBSD Kernel With Exploitable JavaScript

Discussion in 'Underground Nintendo Scene' started by GaryOPA, Mar 3, 2017.

By GaryOPA on Mar 3, 2017 at 1:46 PM
  1. 23,519
    1,981
    113
    GaryOPA

    GaryOPA Master Phoenix Admin Staff Member Top-Dog Brass

    Joined:
    Mar 18, 2006
    Media:
    444
    Occupation:
    Design Eng.
    Location:
    Tropical Island
    Home Page:
    Switch Has Only Been Out For Few Hours, And Already Neat Pictures Are Being Tweeted Out By Sceners!

    Whenever a new video gaming system gets launched, there is always many reasons to be wondering what makes it tick inside!
    [​IMG]
    We have already seen various 'teardowns' and 'pictures' of the inside, and Switch menus, guides and all that stuff, but what about the true underground scene stuff, what is the Operating System powering the new device, and will it be exploitable by modders and hackers and of course when, and do that what with it besides of course the ultimate goal of running homebrew, emulators on it, and of course pirated games, and already within a few hours of launch we have gotten some clues on what the OS might be and what might be attack-able to reach those final end-goals.

    #1 - @Marcan42 the world famous member of Team Fail0verflow got his Switch in which he is only going to play Zelda on and has no interest in 'hax'ing it' but he was quick to point out that it seems the Switch is also FreeBSD based just like the PlayStation 4 console is, at least from reading Nintendo's own fine print legal scroll up of rights, licenses, etc. it all points in that direction, as shown in the main news picture above.

    #2 - Does or Does Not the Switch have a 'web browser' that is the question to be answered since it was hot point of exploits for the Nintendo 3DS, and while officially it does not, it does seem to have an mini-web applet, that is needed to be able to authorize yourself onto some nearby WiFi hotspot like at Starbucks, and as such that app looks like you will be able to be easy redirect to other possible 'login' pages like Twitter as shown below by @enMTW:

    Switch_WebBrowser.jpg

    #3 - Also all the applets on the Switch like eShop and Mii designer seem to be mixture of Java code and webview, and that means besides the above possible attack routes via the 'web applet', the other ones could be also quickly attacked with your own custom bad-ass javascript, as demoed below by @NedWilliamson:

    Switch_JavaScript.jpg

    #4 - And then finally, we have that big chunk of Plastic, the DOCK for your Switch, what is inside that, as that was the only missing picture from the previous teardowns, and @naehrwert decided to answer that question for everyone to see for themselves, is just a plain USB-C Split-Out Box, and there is no EXTRA FAN in it at all!

    Switch_Dock.jpg

    So there you go folks, only out for less than a day and already some neat 'underground scene' info is flowing out from usual sources.
     

Comments

Discussion in 'Underground Nintendo Scene' started by GaryOPA, Mar 3, 2017.

    1. 13
      0
      1
      Soluble

      Soluble Loyal Member

      Joined:
      Feb 18, 2017
      Reason I purchased day one is to guarantee exploitability when it comes! Hoping sooner rather than later but time will tell!
       
    2. 23,519
      1,981
      113
      GaryOPA

      GaryOPA Master Phoenix Admin Staff Member Top-Dog Brass

      Joined:
      Mar 18, 2006
      Media:
      444
      Occupation:
      Design Eng.
      Location:
      Tropical Island
      Home Page:
      Might be wise to keep one on 'factory' shipped firmware, the pre v1.0.0 level without online or eShop, instead of running the day 1 update bringing it to v2.0.0.

      You never know what goodies they might have left 'untouched' in the factory firmware, that v2.0.0 removes.
       
    3. 13
      0
      1
      Soluble

      Soluble Loyal Member

      Joined:
      Feb 18, 2017
      You telling me to go buy another one? *sigh* ok! Had to update to give snipperclips a shot. Wife said if I buy the full version we will probably kill each other though.
       
    4. 6,489
      419
      83
      tech3475

      tech3475 Loyal Member

      Joined:
      Jul 2, 2007
      Given history, chances are it will be years before something happens and youd actually need to upgrade to exploit it.

      Best bet for most people is to just enjoy it for now but prevent it from upgrading the os for a few days in case some word gets out similar to the jtag hack.
       

Share This Page