Twilight hack

The Twilight hack is the name given to the exploit found by Team Twiizers of Wiibrew.org in The Legend of Zelda: Twilight Princess that permits homebrew developers and everyday users to run unofficial homebrew software from a Secure Digital card inserted into the slot on the front of the Wii. Notably, this is the first way found to boot homebrew software without the use of hardware modifications to the Wii console.[1]

Contents

How it works

The hack exploits a buffer overflow error caused by loading a specially crafted save file for Twilight Princess. "Twilight Princess" save files store the name of the player's horse in the game (originally "Epona"). The save file used by the hack presents a name much longer than expected to the Twilight Princess game. As a result, the excess characters in the horse's name overwrite a portion of the game's program in memory with a special loader program. This causes the "Twilight Princess" program to crash as it runs the loader program. When the loader program runs, any program that is placed in the root directory of the SD card, with the filename "boot.elf" or "boot.dol", will run.

What it was used for

Numerous applications have been written that can be run using this method. Since the hack loads an application through a glitch in Twilight Princess, in the past the game had to be loaded each time the user wished to run a homebrew application. This is no longer the case. Certain programs have been made to install custom Wii Menu channels such as the Homebrew Channel so that the applications can be run from the Wii Menu instead of through the Twilight hack every time.

Nintendo's Response

On June 16, 2008, Nintendo released Wii Menu update 3.3 which automatically deletes and prevents the further storage of the unauthorized save files.[2] However, within six hours of the update's release, community members found two bugs in the update that in conjunction can allow a slightly modified Twilight Hack to operate and have released a new version of the hack that will work on machines that have updated to 3.3[3]. A release for 3.4 firmware was later released for the general public to be able to run the Twilight Hack, even though each time the Wii boots it will delete the 'hacked' savefile from the system memory. However, this doesn't prevent users from copying the file from the SD card to the system memory back each time the Wii is turned on and running the exploit without restarting the system first.

System Menu 4.0 blocks any current version of the hack from being copied.[4][5] Similar Smash Stack exploits exist in Super Smash Bros. Brawl, Lego Indiana Jones: The Original Adventures, and Yu-Gi-Oh! 5D's: Wheelie Breakers that continue to work with all System Menu versions from 3.0 to 4.3, current as of December 13, 2010.

See also

References

  1. ^ Twilight Hack - WiiBrew
  2. ^ Miller, Ross (2008-06-15). "New Wii menu update 3.3 nullifies Twilight Princess hack". Joystiq. http://www.joystiq.com/2008/06/16/new-wii-menu-update-3-3-nullifies-twilight-princess-hack/. Retrieved 2008-07-01. 
  3. ^ "June 16 Wii update". 2008-06-16. http://hackmii.com/2008/06/june-16-wii-update/. Retrieved 2008-06-29. 
  4. ^ "La nueva actualizaciĆ³n de Wii acaba con el Twilight Hack" (in Spanish). ElOtroLado.net. http://www.elotrolado.net/noticia_la-nueva-actualizacion-de-wii-acaba-con-el-twilight-hack_15910. Retrieved 2009-04-20. 
  5. ^ "Wii System Menu 4.0 Update Breaks Twilight Hack, Homebrew Channel Survives". Code Retard. http://www.coderetard.com/2009/03/26/wii-system-menu-40-update-breaks-twilight-hack-homebrew-channel-survives/. Retrieved 2009-04-20. 

External links