Post subject: ZSNES exploit: ACE in the host PC by loading a malicious ROM
Amaraticando
It/Its
Editor, Player (159)
Joined: 1/10/2012
Posts: 673
Location: Brazil
ZSNES v1.51 exploit: it's possible to execute native x86 code embedded inside SNES ROM images. https://twitter.com/byuu_san/status/613004775773347840 Demo: https://www.youtube.com/watch?v=Q3SOYneC7mU "ZSNES contains several bugs that allow the ROM to escape from the emulator and do whatever it want on the host computer. We have found three different bugs of this nature, which will be fixed in ZSNES 1.52, but it is likely that more remain."
Editor, Expert player (2071)
Joined: 6/15/2005
Posts: 3282
Also discussed at smwcentral.net. Edit: Also at reddit.
Emulator Coder
Joined: 3/9/2004
Posts: 4588
Location: In his lab studying psychology to find new ways to torture TASers and forumers
I'd like to add that Windows is the most susceptible, Linux much less so. We've had patches for this in our tree for a while now, and I found a few more of these bugs (and patched them) than the three discovered here. New builds should be out soon.
Warning: Opinions expressed by Nach or others in this post do not necessarily reflect the views, opinions, or position of Nach himself on the matter(s) being discussed therein.