ENLBufferPwn Vulnerability - Mario Kart 7 v1.1 demonstration
HTML-код
- Опубликовано: 10 сен 2024
- More details about ENLBufferPwn: github.com/Pab...
This video showcases the ENLBufferPwn vulnerability present in many first party Nintendo games. In this case, a payload (universal-otherapp) is sent to the remote console that achieves ARM9 code execution and runs SafeB9SInstaller.
The console on the left is running the malicious code, while the console on the right is an unmodified console running Mario Kart 7 v1.1.
This vulnerability was fixed in Mario Kart 7 v1.2
just imagine, your playing mario kart 7 online, and your 3ds suddenly mods itself
If you were thinking about modding the 3DS, that would actually be very convenient
@@ChristianoLord9 I was talking about if you where just playing mario kart 7 and suddenly your 3ds started auto doing stuff needed to get it modded because of the ENLBufferPwn
@@Pokycraftgamer9 yes.
@@Pokycraftgamer9 or worst, launch a script who brick the NAND of the console (if the launcher of the attack has bad intentions
@@-mh13_ what's scary is that a very similar exploit (probably even the same) was found on Wiimmfi/Wii quite a few years ago (a hacker that could execute code on other Wiis, and there just happened to exist a code that self-bricked the Wii) so this exploit has actually existed all the way back since the Wii... yea Nintendo's security sucked, they only got good until the switch.
Btw this was patched years ago in Wiimmfi so no worries there
To think all along there was a way to mod 3ds consoles this easily. And you could do like 7 at a time
Not exactly the way I'd look at it, but sure. You still have to make the host however.
This is incredible, just wow
Hey dude! I’ve played through CTGP-7, and enjoyed it quite a bit! However, some of the tracks don’t have a higher-pitched version of the final lap, the tracks in this case are:
Concord Town
Galvarny Falls
GBA Riverside Park
Evergreen Crossing
Elemental Cave
DS Yoshi Falls
SNES Choco Island 2
Metro Madness
Stargaze Summit
Glacier Mine
DKR Jungle Falls
Frozen Grotto
Neo Metropolis
Frosty Heights
Cliffside Circuit
And GBA Rainbow Road
GCN Mario Circuit also seems to have the wrong music, since it should have the one used in GCN Luigi and Yoshi’s Circuits.
Still, I have enjoyed the tracks, and hope that more get added in the future.
Also, cool test that you’re doing here!
Edit: I tested GCN Mario Circuit, and it was fine now.
Is there a list of games that have been tested and proven to NOT have this exploit? Are games like Smash Bros. and Pokémon safe to play online?
Is it normal to hear no sounds from this video?
yeah you're not going deaf don't worry
His camera is using Processing power for both 3DSes
Thanks, I thought that yt bugged again
This is big brain time
PabloMK7 : the hackeur of MK7 👏
Splatoon 1 and Mario Kart 8 on Wiiu are still vunerable right
As of right now, yup
They just took both servers down. Hopefully it should be getting patched soon
8 days, and the servers didn't come back.
@@LennyQUMFIF and now a month
@@maccaemrys This doesn't affect stuff like Pretendo servers right?
Hi. I wanted to ask… does both super Mario party and Mario party superstars have the vulnerability fixed or if it’s still there ?
I don’t know if these games does even have the vulnerability
@@mimitchibubble131 they don't have it in the first place, apparently
@@PabloMK7 thanks ! Now i know that i can play these games online safely. 😁
Hi, wanted to ask… in which games the vulnerability is fixed right now ? I know splatoon 3 is fixed but… I wanted to know because I have a 3DS , a Wii U and a switch. So i wanted to know which games i can play online safely.
Check the vulnerability report in the description
Hey, is that exploit patched on CTGP-7? Because I am looking forward into playing Mario Kart 7 Online again without the risk of my modded 3DS recieving unwanted code from hackers abusing the exploit.
This is patched on Mario kart 7 v1.2
I know that I've already posted this but if you went online in Mario kart 7 or 8. How are you supposed to know if you got hacked by this exploit? Does anyone know? Is closing the software and opening it again or the VR reset the only ways to tell or no? Can someone please answer this. And again sorry for posting this twice. I just wanna know.
So how are you supposed to know if you got hacked from this on mario kart 7 or 8? Basically how are you supposed to know if your system is safe or not if you went online in one of these games that had the exploit before they patched it out. If i make sense..
kartdlphax but without permission! :D
I wanted to ask…. Is the problem fixed in splatoon 3 on the switch ?
Yes
@@PabloMK7 thanks ! 😁😁😁
O MY GOOOOD
Wow, you did it, Nintendo owes you a favor and won't send CTGP-7 to the Shadow Realm :D
Hey I gotta tell you right now that I can't download citra lite I used your link to download it but it was trashed
Hello, citric lite has been removed because the full version of the mod now supports citra
@@PabloMK7 hello can you give me the full version of the mod and thank you for telling me
When you make this vid?? I tought UNIVERSL OTTHERAPP was patch?
This video was taken in May, before universal otherapp was patched.
So this could happened to me all along during my childhood? I modded my shit anyways and glad this was patched.
I love this so much!
Nice work hehe
You broke Animal Crossing new Leaf hacks
Jesus this is scary shit
Oh, I wish I could do this!
Please add an improvement to the character list to be able to play with bowser and bowsitos
In english, Bowsitos's name is Dry Bowser.
wow! 👏👏👏
Nintendo:PUM demanda pa pal lobby🤑🤙saludos ya sabes quien soy jijijija
A minor trolling lol
**gif of someone’s 3DS self-destructing**
@@Lanausse lmao