A security bulletin released 4 days ago by Adobe, tells us that the Flash Player used by the Internet Channel can be exploited to execute arbitrary code because of an input validation error in flash. This might be a opening for hackers to create some kind of homebrew launcher, and Nintendo has to pay to get a unaffected version of the Flash player from Adobe. This means that this security hole might not be patched as fast as the last one. Official bullentin (http://www.adobe.com/support/security/bulletins/apsb07-12.html)

via Wiili.org (http://www.wiili.org/index.php/Main_Page)

Sweet, let the hacking begin! :D

I look forward to seeing some homebrew now

Wii homebrew!

thats cool.
itll be better to see more wii homebrew stuff.

lets hope wii homebrew advances on gc homebrew unlike wii games *coughs*

edit : i vote lua player! lol

Its your time to shine hackers lets get some homebrew on the Wii.

I'd much rather get an update so I know that someone won't be an ass and brick my Wii opposed to an ugly hack (that could be easily patched in the future) for some sparse homebrew.

We simply need a more reliable way to run unsigned code than some flash hole.

I'd much rather get an update so I know that someone won't be an ass and brick my Wii opposed to an ugly hack (that could be easily patched in the future) for some sparse homebrew.

We simply need a more reliable way to run unsigned code than some flash hole.

You've got a point there. This is the first good opportunity, but still I'm waiting for an SD hack to start getting into Wii homebrew

lol so wait. adobe told us theres an exploit so no one had to look? can anyone say dumb??

It's no different than security companies saying theres holes in Windows...

OF COURSE THERES HOLES IN WINDOWS! See me personally, I think the wholes are intentional...hence the name WINDOWS.

But as to the hack, I'm hopin to run some homebrew on my Wii

You've got a point there. This is the first good opportunity, but still I'm waiting for an SD hack to start getting into Wii homebrew

i would personally trust this new exploit more than the sd launcher. theres more people out there faking the sd launcher than a flash launcher. just search google theres THOUSANDS of pages about that. plus nintendo probably thought that the sd card would be the first to be hacked so they fixed all the security flaws for the sd drive.

Silly Nintendo for not including bug fixes in their contract with Adobe....

they probably have bug fixes , but it wont be as simple as bug fixes for the pc, itll have tpo be tested and all

I cant wait to see what becomes of this.

wasnt there a web browser hole before and no one used it? might have been pc opera though i cnt rly remember

Yeh but it was patched

ive been following homebrew on consoles since I got a dreamcast years ago. I've never had anything to offer the homebrew community until now. I've been coding flash since flash 4. I'll be trying every method I know as far as loading data from external sources. If I come across anything weird I'll hand it off to the rest of the brains out there. If anyone wants to share their methods of buffer overflow etc on previous consoles/systems.. I'll shoot all the data I can to flash

What a great day for Wii homebrew!

^ ^
You could have a try at this Mick there must be a way after the code has excuted you will need to get something to the screen like Hello World

But considering this exploit is in the Flash Player I may look into learning Flash plus I have always wanted another challenge on a different console then the PSP

It may or may not turn into anything but I'm not gonna be in any rush to update my console from now on.

Details of the exploit are here: http://www.securityfocus.com/archive/1/473655

If we could just open the door to true wii homebrew, This could mean the door to perfect working emulation for several retro consoles.
Imagine paper mario on your wii, without being milked into having to pay for the same game twice.
I would assume the roms would still need to be digitaly signed with whatever crazy new nity signitures are out there though.
unless the homebrew scene saw fit to make its own nes,snes,pc engine, ect emus for the wii.
still, if we can even get java working on the wii, Thats a good step forward.

I think it is the modchips that killed Wii homebrew we need a leaked Wii SDK then we might get somewere or if someone can reverse engineer it.

PS: Thanks for that link souLLy

Iv got my modchip, and run GC homebrew, and im quite happy. But wii homebrew could be awsome

we need a leaked Wii SDK then we might get somewere or if someone can reverse engineer it.A leaked Wii SDK is certainly NOT what we need. It'll just lead to the same situation that occurred with Xbox homebrew, where everything just uses that SDK (and nobody ever bothers to make a worthy replacement).

Yes but it will come in handy wont it now. What do you reckon we need I think hackers every other console has one but the Wii seems to have been purchased a side

A leaked Wii SDK is certainly NOT what we need. It'll just lead to the same situation that occurred with Xbox homebrew, where everything just uses that SDK (and nobody ever bothers to make a worthy replacement).

who has time to make an sdk that already exists?? i was pretty happy with the xbox scene, who cares if we use the official sdk or not

wow id like to see some homebrew on wii for definate

homebrew on my wii would be a dream come true

I started trying different methods of loading data into flash looking for weird behavior..
loadMovie, loadMovieNum, sendAndLoad.. nothing unusual happened.

Then I came across this:
http://www.mindedsecurity.com/en/labs/advisories/flash_remote_flv_exec

Now I really don't know much about overflows but this report gives a fair amount of detail. So I'm here with XVI32 and a few flv files sending the hacked datatype through an flv player without much to report.

I'm still looking for an flv file with a more similar pattern (none of the flv files I have contain the "framerate" var so I can get a little more into it.. if anyone knows much about the structure of an FLV file, thats apparently where we start.

I don't claim to know much at all about this sort of thing, I'm just a determined flash developer ready to give it all I've got!

I've manage to crash flash... mmm good news?

and now I've managed to have the wii freeze once the file is loaded... it's just sitting there waiting for a nice tall glass of ice cold homebrew.

ok who wants me to pass the torch?

LMFAO This reminds me of the Flash Professional buffer overflow I found that I never told anyone about...

BTW I found a link to a PoC of the exploit. Go here on your Wii browser:

http://www.henke37.cjb.net/misc/flv/flash_flv_9.0.45.0_exp.html

No, it's not a virus. I got it from here:
http://www.wiili.org/index.php/Executing_Our_Code/Flv_vuln

bwahahahaha, i tried it, my wii froze...
im thinking this is a good thing ready for an exploit.

Just need a program to run after the exploit has been exceuted