This is my last (stupid?) idea about getting code executed on iPods: Games savefile crafting and other stuff like this.
(I own only an iPod Classic (6th Gen) and I tried this stuff only on it.) Reversing the iPod games format seems to be really difficult (I think that making custom games is impossible because of the use of RSA by Apple for signing them... yes, private key cracking is possible but not very fast :D) So far, I have managed to create a datafile for the game "Klondike" that crashes te iPod but I think it is not exploitable (probably is only some kind of unhandled exception). Another feature of this game that can be bugged are the "Custom Cardbacks". You can change the back of the cards with a fixed size 39x54 TGA. I tried to create some (not a great number) simple (and malformed) TGAs but nothing interesting appened. In the game "iPod Quiz" you can edit the player name in the datafile. It contains infos about your preferences and the highest scores. These scores are associated to a player name. I edited the names but it seems that if I replace them with longer ones the iPod edit them and truncate the exceeding part. After this process it rewrite the file on the hard disk. I'm going to try something on "Vortex"... (Uh, and sorry if my English is not perfect ;) ) Other ideas? --3mpty _______________________________________________ Linux4nano-dev mailing list [email protected] https://mail.gna.org/listinfo/linux4nano-dev http://www.linux4nano.org
