Glitch City Laboratories Archives

Glitch City Laboratories closed on 1 September 2020 (announcement). This is an archived copy of a thread from Glitch City Laboratories Forums.

You can join Glitch City Research Institute to ask questions or discuss current developments.

You may also download the archive of this forum in .tar.gz, .sql.gz, or .sqlite.gz formats.

Arbitrary Code Execution Discussion

Cool Lorelei and Blue's room meta-map scripts - Page 1

Cool Lorelei and Blue's room meta-map scripts

Posted by: Torchickens
Date: 2018-12-02 15:26:54
I found two really useful scripts in Red/Blue!

D64D (Lorelei's Pokémon League room)= 07 : You start an endless loop of Hall of Fame inductions after entering Lorelei's room, an ACE setup apparently isn't even needed

D64C (Blue's Pokémon League room)= 0E : Arbitrary code execution at D321 in WRAM. Yes, that's right! It executes item 2's quantity without the need of a bootstrap setup


In addition there is one that could be useful for Lorelei's room, if there is an equivalent script in Japanese Red/Green/Blue.


0x10: Although it first appears to have no use other than hiding the player sprite, an invisible menu with options is opened (possibly badge describer man). If the player waits until a description has finished and holds down at the entrance, they may successfully leave Lorelei's room. It is unknown whether a similar effect occurs in the Japanese versions, which could be useful for badge describer glitch.


This is amazingly lucky.

Re: Cool Lorelei and Blue's room meta-map scripts

Posted by: Sherkel
Date: 2018-12-02 17:23:18
This is amazingly lucky.
Only possible valid reaction right there. Well, aside from awe at the time it must have taken to find these, of course.

What action would result in setting $D64C to 0E upon entering Blue's Champion room?

Re: Cool Lorelei and Blue's room meta-map scripts

Posted by: Parzival
Date: 2018-12-07 11:30:34
ANOTHER ACE SETUP???

That's, like, what, 172 for Gen 1 now?

Re: Cool Lorelei and Blue's room meta-map scripts

Posted by: Torchickens
Date: 2018-12-07 13:39:52

ANOTHER ACE SETUP???

That's, like, what, 172 for Gen 1 now?


That's funny, ha ha.

In fairness though, most if not all meta-script locations have ACE, just this one seemed particularly easy to pull off. However, on hindsight you may not be able to set it up with expanded PC items as it would be an item beyond slot 127, hence is inaccessible if item 0-127 items repeat like they do in the items pack.