Hacker News new | past | comments | ask | show | jobs | submit login
There’s a Hole in Your SoC: Glitching the MediaTek BootROM (nccgroup.com)
43 points by wglb 5 days ago | hide | past | favorite | 1 comment





Fault injection is a really interesting avenue for exploiting things like game consoles, where bootloader exploits tend to be the holy grail and where dumping decryption keys is huge for emulators.

It was used on the Nintendo 3DS, for example, to get the CPU to take an exception during bootROM execution [1], which combined with some other flaws allowed dumping the ROM with all of its keys.

https://derrekr.github.io/3ds/33c3/#/18




Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact

Search: