Old-browserhax-XL is another primary userland exploit for the old3ds browser, Spider. It's the successor to old-browserhax, which was murdered by firmware 11.14. RIP.
What's needed
An old3ds (or old2ds) on firmware:
11.14.0-46 on regions US,EU,JP,KR,CH,TW
Directions (hbmenu)
- In the release folder (same as old-browserhax), find your region (USA, EUROPE, JAPAN) and take all files inside that folder and put them on the root of your sd card. Do not copy the entire region folder over, just its contents.
- Place the homebrew launcher boot.3dsx from here also on the root of your sd card.
- With wifi on and working, scan this QR after pressing L+R should buttons together and tapping the QR button on the bottom screen. The link to the sploit page is https://zoogie.github.io/web/nbhax if you want to type it in manually and/or bookmark it.
- Click on the "PROCEED TO HAXX" button, then press A twice to confirm two pop-ups. The exploit should then load the homebrew menu. Make sure to add homebrews to the sdmc:/3ds folder first in order to have something to run. See other guides online about what you can do with homebrew.
- Note that CH & TW regions cannot run hbmenu homebrew. Only cfw options like AGBhax are possible with these regions. This is a limitation of the *hax homebrew environment, not this exploit.
Exploit details
A certain line of javascript moves an object from an iframe to its parent while the iframe is still being parsed. This results in a Use-After-Free crash. It's based on the webkit test case here.
Troubleshooting (hbmenu)
-
Problem: The 3ds freezes on a yellow screen.
- Solution: Try again. Boot rate is about 75-80%. This has always been an issue with hax homebrew and not specific to this implementation. If this keeps occurring over and over, it's likely being caused by running browserhax while cfw (luma3ds + boot9strap) is already installed -- don't do this! Follow https://3ds.hacks.guide for proper instructions on how to launch .3dsx homebrew under cfw. Hard freezing with regular screens (ie no solid colored screen) can also indicate running under cfw.
-
Problem: The 3ds freezes on some other color screen or "An error has occured" prompt shows up.
- Solution: Make sure you have all the correct files. Check your region is correct.
- At minimum, make sure to have the below 3 files in the sd root as shown.
sdmc:/arm11code.bin
sdmc:/browserhax_hblauncher_ropbin_payload.bin
sdmc:/boot.3dsx
-
Problem: I still can't get the exploit to work and the two solutions above didn't help.
- Solution: Go to your browser's settings and select Clear History and Delete Cookies. Now create a bookmark with https://zoogie.github.io/web/nbhax as the address (or just edit an existing bookmark). Exit the browser, then launch it again (this saves your changes), and then finally launch that nbhax bookmark you just made. It may also be helpful to power cycle the 3ds in between attempts if the exploit is still being stubborn.
FAQ
-
Q: Will this exploit be fixed in a firmware update?
- A: Last time I suggested about 50% odds new-browserhax being fixed which turned out to be 100% odds. So I guess that means we average those two and get a 75% chance of it being fixed this time 😛
- I really don't know.
-
Q: Will this work with unSAFE_MODE and AGBhax?
- A: Works for me! The directions for these exploit chains are out of scope for this readme though.
by zoogie.