Thread: KindleDrip — From Your Kindle’s Email Address to Using Your Credit Card
View Single Post
Old 02-17-2021, 12:26 PM   #26
cronot
Member
cronot has a complete set of Star Wars action figures.cronot has a complete set of Star Wars action figures.cronot has a complete set of Star Wars action figures.
 
Posts: 19
Karma: 268
Join Date: Feb 2021
Device: Kindle 10th gen
Quote:
Originally Posted by tryol View Post
No, it's still 1 image but it's split into multiple tiles. I'm not sure how that works exactly, I didn't really look into how the JXR format works. I just threw this together "quickly".

I've been thinking and theorethically this exploit is doable with just 1 tile (that means 1 absolute-write primitive). Unfortunately that would only give us 15*16 (240) bytes for the shellcode... I wonder if that's enough.

If I did it with more than 1 tile, that would give us 240+(n-1)*256 bytes of space where n is the number of tiles. I don't have any experience with shellcode or kindle jailbreaking so it's hard to make a guess on how much space we need. I'd prefer if 240 bytes was enough because I'm not sure how hard it would be to make it work with multiple tiles. Does anybody have an idea?
I'm not experienced with jailbraking either, but wouldn't having a single line of script that would source the full script from (e.g.) mass storage work?
cronot is offline   Reply With Quote