Reply to thread
GBAtemp.net - The Independent Video Game Community
Search
Search titles only
By:
Search titles only
By:
Reply to thread
GBAtemp.net - The Independent Video Game Community
Home
Log in
Terms & Rules
Donate
Forums
New posts
Search forums
Groups
Public Events
New
New posts
New resources
New blog entries
New profile posts
New blog entry comments
New threadmarks
Latest activity
Cheats
Cheat Codes Add and Request group
The Legend of Zelda: Tears of the Kingdom cheat codes
Pokémon Legends: Arceus cheat codes
Xenoblade Chronicles 3 cheat codes
Fire Emblem Engage cheat codes
Request a cheat...
Tutorials
Nintendo Switch tutorials
Nintendo 3DS tutorials
Nintendo Wii U tutorials
Reviews
Overview
Official reviews
User reviews
Downloads
Latest reviews
Search resources
Blogs
New entries
New comments
Blog list
Search blogs
Chat
Top chatters
Search
Search titles only
By:
Search titles only
By:
Log in
Register
New posts
Search forums
Log in
Register
Home
Forums
PC, Console & Handheld Discussions
Nintendo DS
Announcing RocketLauncher! The first exploit with unlocked Arm7!
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="Apache Thunder" data-source="post: 7931773" data-attributes="member: 105648"><p>Looks like NoCash found an exploit that is even better then RocketLauncher:</p><p></p><p><a href="https://problemkaputt.de/gba.htm" target="_blank">https://problemkaputt.de/gba.htm</a></p><p></p><p>He titled it Unlaunch. The exploit works by exploiting a flaw in Stage2 and apparently works on all firmware versions. It requires you run the installer from a DSiWare based hax environment as access to SD/NAND is required. (thus you can't run this from Slot-1 based TWL exploit)</p><p></p><p>The flaw in stage2 is a buffer overflow involving Launcher's TMD file. If you provide a larger then normal TMD file, it will attempt to load the TMD into ram anyways (this occurs before it does the RSA check) This causes it to overwrite some code in arm9 ram causing arm9 to execute the custom payload. The full details are found in the info menus in the installer.</p><p></p><p>Note however the installer does not appear to work correctly at the moment. I'd advise you not attempt to install it from the installer. Use the manual install method instead. BUT I'd highly recommend you have a hard mod before attempting manual install. If you have had experience modifying your nand you may be ok doing this. But for safety sake I would just advise against that until the installer works properly.</p><p></p><p>(this is one reason why RL hasn't been released yet. No proper installer tools are available yet and we don't want people bricking consoles trying to install it)</p><p></p><p>The release of this exploit may impact our plans regarding RocketLauncher. I'll post more about this once StuckPixel has decided to comment on this.</p></blockquote><p></p>
[QUOTE="Apache Thunder, post: 7931773, member: 105648"] Looks like NoCash found an exploit that is even better then RocketLauncher: [URL]https://problemkaputt.de/gba.htm[/URL] He titled it Unlaunch. The exploit works by exploiting a flaw in Stage2 and apparently works on all firmware versions. It requires you run the installer from a DSiWare based hax environment as access to SD/NAND is required. (thus you can't run this from Slot-1 based TWL exploit) The flaw in stage2 is a buffer overflow involving Launcher's TMD file. If you provide a larger then normal TMD file, it will attempt to load the TMD into ram anyways (this occurs before it does the RSA check) This causes it to overwrite some code in arm9 ram causing arm9 to execute the custom payload. The full details are found in the info menus in the installer. Note however the installer does not appear to work correctly at the moment. I'd advise you not attempt to install it from the installer. Use the manual install method instead. BUT I'd highly recommend you have a hard mod before attempting manual install. If you have had experience modifying your nand you may be ok doing this. But for safety sake I would just advise against that until the installer works properly. (this is one reason why RL hasn't been released yet. No proper installer tools are available yet and we don't want people bricking consoles trying to install it) The release of this exploit may impact our plans regarding RocketLauncher. I'll post more about this once StuckPixel has decided to comment on this. [/QUOTE]
Insert quotes…
Verification
Post reply
Home
Forums
PC, Console & Handheld Discussions
Nintendo DS
Announcing RocketLauncher! The first exploit with unlocked Arm7!
General chit-chat
Help
Users
Settings
Notifications
Miscellaneous
Inverse message direction
Display editor on top
Enable maximized mode
Display images as links
Hide bot messages
Hide statuses
Hide chatter list
Show messages from ignored users
Temporarily disable chat
Receive mention alerts
Sound notifications
Normal messages
Private messages
Whisper messages
Mention messages
Bot messages
Desktop notifications
Normal messages
Private messages
Whisper messages
Mention messages
Bot messages
Options
Options
View top chatters
Xdqwerty
Loading…
what are you looking at?
BigOnYa
Loading…
K3Nv2
Loading…
Psionic Roshambo
Loading…
a_username_that_is_cool
Loading…
S
@
salazarcosplay
:
im here if you ant to talk about it
Today at 4:12 PM
S
@
salazarcosplay
:
want
Today at 4:12 PM
@
Xdqwerty
:
@salazarcosplay
, thx thx
Today at 4:15 PM
@
Psionic Roshambo
:
If you decide to take the easy way out, at least do it some interesting way, like 5 fishing magnets and ropes... Run out to the space x rocket as it's about to take off.... Ohhhh add some snow skiis and skii into to space!!!
Today at 4:17 PM
@
Xdqwerty
:
@Psionic Roshambo
, wut
Today at 4:18 PM
@
Psionic Roshambo
:
https://thehustle.co/digiscents-ismell-fail
Today at 4:19 PM
@
Psionic Roshambo
:
Was marketed wrong...
Today at 4:19 PM
@
Psionic Roshambo
:
5 dollars per download, "Britney Spears panties after a concert" celebrity scents would have sold like hotcakes
Today at 4:21 PM
@
Xdqwerty
:
@Psionic Roshambo
, wut wut
Today at 4:34 PM
@
BakerMan
:
in the butt
+1
Today at 5:17 PM
@
BakerMan
:
sorry, that's a song
+1
Today at 5:18 PM
@
Xdqwerty
:
@BakerMan
, srsly?
Today at 5:21 PM
@
Psionic Roshambo
:
https://m.youtube.com/watch?v=G4PvTrTp7Tc&pp=ygUTd2hhdCB3aGF0IGluIGRhIGJ1dA==
+1
41 minutes ago
@
Psionic Roshambo
:
https://youtu.be/1DilfTSy7Fo?si=c0iKDr8rSnGdaxjB
33 minutes ago
@
Xdqwerty
:
https://www.youtube.com/watch?v=LaBJ6gd3vLo
31 minutes ago
@
a_username_that_is_cool
:
Fun Fact!
If your sound goes out and it's connected to a device you've never seen before
You are being spied on
+1
29 minutes ago
@
Psionic Roshambo
:
Lol
27 minutes ago
@
Xdqwerty
:
there should be a "noob paradise" thread for each console
15 minutes ago
@
BigOnYa
:
Fun fact - if you seen someone outside your house, looking inside your window, your not being spied on. Giggity.
+1
15 minutes ago
@
Xdqwerty
:
@BigOnYa
, are you quagmire?
+1
9 minutes ago
@
BigOnYa
:
Look out your window, you see me?
6 minutes ago
@
K3Nv2
:
@Psionic Roshambo
, peeps his head in like just let me in
6 minutes ago
@
Xdqwerty
:
@BigOnYa
, no
5 minutes ago
@
BigOnYa
:
I'm behind that tree
4 minutes ago
@
Xdqwerty
:
@BigOnYa
, what tree?
3 minutes ago
Submit
@
Xdqwerty
:
@BigOnYa, what tree?
3 minutes ago
Chat
5