iOS hacker qwertyoruiop has discovered that an old iOS 9.3 WebKit vulnerability lies hidden within Nintendo's latest home console/portable hybrid, the Nintendo Switch (via SlashGear). The exploit lies in the Switch's limited web browser functionality, which allows users to sync up with Twitter and Facebook as well as connect to public Wi-Fi hotspots, and is all run by Apple's open source browser engine WebKit.

The Switch's version of WebKit is older than the one currently running on up-to-date iOS and macOS devices, however, allowing Nintendo's device to become vulnerable to a collection of critical exploits that plagued iOS 9.3 last summer. One, named "Pegasus," was a highly sophisticated exploit that installed itself within an iOS device through a link sent via a text message. Apple eventually addressed and fixed these issues with iOS 9.3.5.

webkit switch

For unknown reasons, Nintendo opted to include a version of WebKit that doesn't have these fixes, allowing qwertyoruiop to use an existing iOS WebKit jailbreak, remove any iOS-specific code, and tweak it so it runs on the Switch. The existence of a known exploit running on Switch points towards a rushed release, which was already believed to be the case since the company's fiscal year ends March 31, 2017 and the Switch launched March 3.

Developer LiveOverflow yesterday published a proof of concept video on the Switch WebKit exploit, further detailing how the bug originating on Apple's devices can be used to hack a Nintendo Switch.


The userland exploit "doesn’t mean much for the end user," according to Wololo, because it hasn't revealed any detailed information on the Switch yet, nor does it hand over full kernel access to hackers. As the news slowly makes the rounds online, it's most likely that Nintendo will add in a patch to the old WebKit exploit in a future update to the Switch.

Tags: Nintendo, Nintendo Switch

Top Rated Comments

chriscrk Avatar
chriscrk
75 months ago
Breath of the Wild is the best game in the world.
Score: 12 Votes (Like | Disagree)
macTW Avatar
macTW
75 months ago
Nintendo can't do anything right. If it didn't have copyrights on popular characters, it'd have gone out of business a decade ago.
Score: 9 Votes (Like | Disagree)
Kaibelf Avatar
Kaibelf
75 months ago
Breath of the Wild is the best game in the world.
It really is spectacular, isn't it? I love it.
Score: 7 Votes (Like | Disagree)
thisisnotmyname Avatar
thisisnotmyname
75 months ago
Jailbreakers will be happy. Guess this means pirated games are inbound then too.
Score: 5 Votes (Like | Disagree)
paulryp Avatar
paulryp
75 months ago
who cares. Someones needs to go to a lot of effect to steal my Zelda save file. Non issue how about some news about iMacs
Score: 5 Votes (Like | Disagree)
Tubamajuba Avatar
Tubamajuba
75 months ago
not really. played it for half a day and then gave up. lots of "goto point A to pick up point B and return for your reward" type of deal.

only for zelda fans i guess.
I'm really not a huge Zelda fan and this is already one of the best games I've ever played.

The joy in the game isn't actually found in the quests. Indeed, many of the quests are pretty standard fare. It's the world itself that is beyond amazing. The more time you spend exploring the environments around you, the more fun you'll have.

Of course, it may still not be your cup of tea, but it seems like getting off the beaten path might help you enjoy the game a bit more.
Score: 3 Votes (Like | Disagree)
Read All Comments

Popular Stories

Emergency SOS via Satellite iPhone YT

Apple's iPhone 14 Emergency SOS via Satellite Feature Saves Stranded Man in Alaska

Thursday December 1, 2022 4:37 pm PST by
With the launch of iOS 16.1, Apple rolled out a Emergency SOS via Satellite, which is designed to allow iPhone 14 owners to contact emergency services using satellite connectivity when no cellular or WiFi connection is available. The feature was put to the test in Alaska today, when a man became stranded in a rural area. In the early hours of the morning on December 1, Alaska State Troopers ...
Read Full Article233 comments
iPhone Measure Height

Newer iPhones Allow You to Measure Someone's Height Instantly — Here's How

Saturday December 3, 2022 10:23 am PST by
iPhone 12 Pro and Pro Max, iPhone 13 Pro and Pro Max, and iPhone 14 Pro and Pro Max models feature a LiDAR Scanner next to the rear camera that can be used to measure a person's height instantly in Apple's preinstalled Measure app. To measure a person's height, simply open the Measure app, point your iPhone at the person you want to measure, and make sure they are visible on the screen from...
Read Full Article131 comments
General iOS 16 Feature Yellow

iOS 16.2 for iPhone Launching This Month With These 8 New Features

Thursday December 1, 2022 8:44 am PST by
Apple plans to publicly release iOS 16.2 for the iPhone in mid-December, according to Bloomberg's Mark Gurman. The update remains in beta testing for now, with at least eight new features and changes already uncovered so far. iOS 16.2 introduces a number of new features, including Apple's new whiteboard app Freeform, two new Lock Screen widgets for Sleep and Medications, the ability to hide...
Read Full Article
iOS 16

When Will iOS 16.2 Be Released?

Friday December 2, 2022 2:13 pm PST by
Apple in late October began testing iOS 16.2 and iPadOS 16.2 updates, providing betas to both developers and public beta testers. As of now, we've had four total betas, with the fourth beta having been released earlier this week. iOS 16.2 and iPadOS 16.2 are expected before the end of the year, and we thought we'd try to narrow down the launch timeline. With only four betas released since...
Read Full Article54 comments
14 vs 16 inch mbp m2 pro and max feature 1

Major RAM Upgrade Coming to Next-Generation MacBook Pro

Friday December 2, 2022 2:03 am PST by
The next-generation MacBook Pro models could feature faster RAM, according to a recent report from a reliable source. MacRumors Forums member "Amethyst," who accurately revealed details about the Mac Studio and Studio Display before those products were announced, recently provided information about Apple's upcoming 14- and 16-inch MacBook Pro models. The new machines are expected to feature...
Read Full Article
iPad 10 Battery Pull Tabs

iPad 10 Teardown Reveals Why Device Isn't Compatible With Apple Pencil 2

Thursday December 1, 2022 10:48 am PST by
Do-it-yourself repair website iFixit today shared a video teardown of Apple's new 10th-generation iPad, providing a closer look inside the tablet and revealing why the device lacks support for the second-generation Apple Pencil. The teardown reveals the internal layout of the iPad, including its two-cell 7,606 mAh battery, logic board with the A14 Bionic chip, and more. As suspected, the...
Read Full Article72 comments
android apple fix rcs

Google Again Criticizes Apple for Not Adopting RCS for Messages App: 'Their Texting is Stuck in the 1990s'

Friday December 2, 2022 10:54 am PST by
Google is continuing on with its attempt to convince Apple to adopt the RCS messaging standard, publishing a new "it's time for RCS" blog post. Promoted heavily by Google, RCS or Rich Communication Services is a messaging standard that is designed to replace the current SMS messaging standard. It provides support for higher resolution photos and videos, audio messages, and bigger file sizes, ...
Read Full Article577 comments
ios 16 2 beta notifiation center

PSA: Older Notifications No Longer Hidden in Notification Center in iOS 16.2 Beta 4

Friday December 2, 2022 5:23 am PST by
In a small but significant change to the way the Notification Center works in the latest iOS 16.2 beta, older notifications are now shown by default without having to swipe up. In the current release as well as earlier versions of iOS 16, users do not automatically see older notifications in the Notification Center like they did in iOS 15, and instead must manually swipe up from the middle...
Read Full Article57 comments
lastpass

LastPass Hacked for Second Time This Year

Friday December 2, 2022 4:04 am PST by
Password management app LastPass says it is investigating a security incident after an "unauthorized party" compromised its systems on Wednesday and gained access to some customer information. The information was stored in a third-party cloud service shared by LastPass and parent company GoTo, said LastPass CEO Karim Toubba in a blog post. Toubba said the hackers used information stolen from ...
Read Full Article182 comments
Apple Card Savings

Apple Card Customer Agreement Updated for 'Upcoming' Savings Account Feature

Friday December 2, 2022 11:43 am PST by
Goldman Sachs this week updated its Apple Card customer agreement to reflect the credit card's upcoming Daily Cash savings account feature, which was expected to launch with iOS 16.1 but appears to have been delayed. "To enable new ways to use Daily Cash like the upcoming Savings account feature, we are updating the Daily Cash Program section of your Apple Card Customer Agreement," reads an...
Read Full Article65 comments