More actions
No edit summary |
m (HydeWing moved page Bluebomb Wii to BlueBomb Wii) |
(No difference)
|
Revision as of 11:11, 24 Ocak 2023
BlueBomb | |
---|---|
File:Bluebombwii.jpg | |
General | |
Author | Fullmetal5 |
Type | Exploits |
Version | 1.5 |
License | GPL-3.0 |
Last Updated | 2020/02/29 |
Links | |
Download | |
Website | |
Source | |
BlueBomb is a known exploit that targets Broadcom's Bluetooth stack, which is utilized in the Nintendo Wii gaming console. This exploit allows for unauthorized access to the Wii's system and can potentially be used for malicious purposes such as running unauthorized software or modifying system settings.
The exploit takes advantage of a vulnerability in the Wii's Bluetooth stack and can be executed by sending a specially crafted packet to the affected device.
Due to the nature of the exploit, it is important for users to keep their Wii's firmware and software up-to-date to ensure protection against potential attacks utilizing BlueBomb.
Media
BlueBomb Wii Homebrew Method from Linux Virtualbox VM - (i12bretro)
How do I run it?
You will need a Linux computer to do this! Download the pre-built binaries from the releases page and follow these instructions.
- Disable your bluetooth service by running
sudo systemctl disable --now bluetooth
- Run bluebomb with the arguments to the app-specific payload and the stage1 you would like to run. Ex.
sudo ./bluebomb ./stage0/MINI_SM_NTSC.bin stage1.bin
for a NTSC Wii Mini's System Menu. You can also specify which hci device to use with bluebomb by adding before thestage0
andstage1
arguments. Ex.sudo ./bluebomb 1 ./stage0/MINI_SM_NTSC.bin stage1.bin
to use HCI1. - Start your Wii and navigate to the app that you are exploiting, for the System Menu you only need to turn on the Wii, you can leave it sitting on the Health and Safety screen.
- Turn OFF your wiimote at this point. DO NOT let anything else connect to the console via bluetooth.
- Make sure you console is close to your bluetooth adapter, you may have to move it closer to get it in range, this will depend on your adapter.
- Click the SYNC button on your console. You may have to click it several times in a row before it sees the computer. You will know it is connected when bluebomb prints "Got connection handle: #" Stop pushing the SYNC button and wait for bluebomb to run, what happens will depend on what
stage1.bin
you are using. The one from this repo will loadboot.elf
off the root of a FAT32 formatted USB drive and run it. You can use the HackMii Installer's boot.elf from here to get the Homebrew Channel.
IMPORTANT: The steps above will have disabled the bluetooth service on your machine to run the exploit. To enable the bluetooth service again run sudo systemctl enable --now bluetooth
.
Support
You can open an issue on this repo, or join the Wii Mini Hacking Discord.
Changelog
v1.5
- Remove BlueZ dependency and refactor.
v1.0
- Initial Release
External Links
- WiiBrew - https://wiibrew.org/wiki/Bluebomb
- Github - https://github.com/Fullmetal5/bluebomb