Posted Jan 03, 2009 at 08:55AM by Gino D.
Listed in:
PSP
Tags:
PSPLink,
FreePlay,
Exploit,
MaTiAz,
Hellcat,
PSP-3000
Ó
|
Now this is how you start a new year! New exploit, old game! Damn, it's so cool to actually see this beauty working - and on a PSP-3000 no less! The PSP scene was buzzing the other day when MaTiAz found an exploit (read: buffer overflow!) in the three year old game, GripShift.
We'll leave the technical bits for later. Now, we'll have this video from FreePlay do the talking: Holy... mother... of... pearl... o_0 Now then, the details: MaTiAz says that they've yet to find any further use for this, but it's still a new exploit. It could lead to further hacks, and for now, it's merely a proof of concept. Be that as it may, this is a great start, and a rather sweet find! Here's MaTiAz explaining the exploit: GripShift has a buffer overflow vulnerability when loading savegames. The savegame contains the profile name which can be easily used to overwrite $ra. The savegame file is pretty big (25kB) so you have lots of space to put your code there. I wrote a simple blob of code to paint the framebuffer completely white (to just indicate that arbitrary code is running ). The return address is located at offset 0xA9 in the file. In this poc it points to 0x08E4CD50 (which is only a few bytes after the return address), and the code starts at 0xCC in the file. It was tested on 4.01M33-2 with US version of GripShift (ULUS10040), and psplink.prx, usbhostfs.prx and deemerh.prx loaded (also without psplink and usbhostfs). The decrypted savegame (sorry, couldn't [be bothered to] get Shine's savegame tool working so it's in plaintext form) is in the SDDATA.BIN form which Hellcat's Savegame-Deemer produces (thanks to him, if the program didn't exist I wouldn't have bothered with this. ). Just copy the ULUS10040SAVE00 directory to /PSP/SAVEPLAIN/ and run the game. EDIT: yeah, don't forget to have Savegame-Deemer working, duh. There are two versions of the exploit. The first which is the raw form from MaTiAz, the other one (v2), is a version encrypted by FreePlay. It's also been confirmed that it works all the way up to the recent CFW 5.02 GEN-A. We're getting there, people! Just a bit more... Hope springs eternal, folks! Thanks to Sbrillo1 for the tip! Download: GripShift savegame exploit POC Download: GripShift savegame exploit POC v2 Visit: QJ.NET PSP development forum Related articles: |
|
|
Buy: [GripShift]
[Via lan.st]
Permalink |
Email this |
Linking Blogs
| Digg It!
Bookmark / Find this article on: |
|
63 Comments
|
 |
by Advertising - |
|
 
|
|
by FreePlay - 2009-01-03 |
|
|
» Note...
While there's a European save included, this was mainly for testing purposes. There are significant differences between the two versions (not the least being that Ubisoft was involved in the European one).
At the moment, *this code only works with the USA version of the game.* I'm pretty sure the exploit is in the European one, too, but haven't dealt with that yet.
While there's a European save included, this was mainly for testing purposes. There are significant differences between the two versions (not the least being that Ubisoft was involved in the European one).
At the moment, *this code only works with the USA version of the game.* I'm pretty sure the exploit is in the European one, too, but haven't dealt with that yet.
|
Re: FreePlay - 2009-01-03 |
|
|
» LOL
Some idiot is going through on his proxies, downvoting my comments. What an ass.
Some idiot is going through on his proxies, downvoting my comments. What an ass.
|
Re: UltimaArmorX - 2009-01-04 |
|
|
» Why are you downvoting your own comments,
no, why do you even care!? Do you have no dignity away from your computer?
no, why do you even care!? Do you have no dignity away from your computer?
|
Re: Aces In The Palm - 2009-01-04 |
|
|
» its not about dignity
if i'm a noob i'm trying to learn about the the exploits
i'm hordly going to take notice of a person who has no starts
i'll look for the highest voted as i'd feel they'de be most relevant to the article with the most fact
if i'm a noob i'm trying to learn about the the exploits
i'm hordly going to take notice of a person who has no starts
i'll look for the highest voted as i'd feel they'de be most relevant to the article with the most fact
|
Re: leq - 2009-01-04 |
|
|
» well
Don't blame me, I voted for Kang.
Don't blame me, I voted for Kang.
|
Re: jerryspringerxxx - 2009-01-04 |
|
|
» dude, get a life
this *****ing sucks dude. seriously. you have no talant.
this *****ing sucks dude. seriously. you have no talant.
|
Re: Justingraziano - 2009-01-04 |
|
|
» ...
Dude wtf? This is a great exploit. Dont make fun of him.
Dude wtf? This is a great exploit. Dont make fun of him.
|
Re: UltimaArmorX - 2009-01-04 |
|
|
» OK Aces. I get it.
But even with 5 stars it does not mean the comment will contain relevance. I hate to be a reminder, but the balloons that pop up on the two vote buttons say "I like this comment" and "I dislike this comment." Because of this, it literally can be any reason why the comment has whatever amount of stars.
Like my comment up top. It was obviously voted down once, voted back up, and then voted down once more. Reason? Maybe because...the reader has nothing else better to do? There's no fruit in voting up or down on comments like this and my other one. It sure is funny, though. Maybe they're entertained(?) Or maybe I added a thought or idea and someone agrees?
By the way, I think I overestimated FreePlay's train of thought. Since when are communities an idiot on a proxy? Tch.. this is nuts!
But even with 5 stars it does not mean the comment will contain relevance. I hate to be a reminder, but the balloons that pop up on the two vote buttons say "I like this comment" and "I dislike this comment." Because of this, it literally can be any reason why the comment has whatever amount of stars.
Like my comment up top. It was obviously voted down once, voted back up, and then voted down once more. Reason? Maybe because...the reader has nothing else better to do? There's no fruit in voting up or down on comments like this and my other one. It sure is funny, though. Maybe they're entertained(?) Or maybe I added a thought or idea and someone agrees?
By the way, I think I overestimated FreePlay's train of thought. Since when are communities an idiot on a proxy? Tch.. this is nuts!
|
Re: Aces In The Palm - 2009-01-05 |
|
|
» lol @ UltimaArmorX
sadly i relise that
sometimes its do you like this person to some people using this site
which is why i wonder
why can unregistered people vote
should have to be registered and have to give a quick reason why you agree or disagree whenever you make a vote
sadly i relise that
sometimes its do you like this person to some people using this site
which is why i wonder
why can unregistered people vote
should have to be registered and have to give a quick reason why you agree or disagree whenever you make a vote
|
by fenomeno0chris - 2009-01-03 |
|
|
» YEHAAAA!!
I hope DarkAlex or somebody else can finaly hack the PSP-3000!
Please work on this Exploit!
PS: I´ve already got a PSP-3000!
I hope DarkAlex or somebody else can finaly hack the PSP-3000!
Please work on this Exploit!
PS: I´ve already got a PSP-3000!
|
by mistr305 - 2009-01-03 |
|
|
» VERY!!! Nice
I should get the PSP 3000;
Atleast to try "Contrast Boost" Effect on PSP-3000. (Talking about TweakDISPLAY)
I should get the PSP 3000;
Atleast to try "Contrast Boost" Effect on PSP-3000. (Talking about TweakDISPLAY)
|
by Stinky_1 - 2009-01-03 |
|
|
» ....
hopefully this method can be used to hack the first few PSP-3000's, then they can reverse engineer what they did to work with pandora.
I remember the days of using all kinds of game saves on different versions of PSP to unlock them. But there was always that moment that your heart skipped a beat just in case something went wrong. Once pandora came out, it didnt really matter anymore.
Run with it guys! I may have to see if I can find a copy of grip shift now, and grab a psp 3000
hopefully this method can be used to hack the first few PSP-3000's, then they can reverse engineer what they did to work with pandora.
I remember the days of using all kinds of game saves on different versions of PSP to unlock them. But there was always that moment that your heart skipped a beat just in case something went wrong. Once pandora came out, it didnt really matter anymore.
Run with it guys! I may have to see if I can find a copy of grip shift now, and grab a psp 3000
|
by p0op - 2009-01-03 |
|
|
» .
The great thing about this as opposed to the GTA exploit found a few years ago is, that when people go hunting for this game, it'll only be, like, 10-20 bucks, as opposed to the 50 that people were paying back then.
The great thing about this as opposed to the GTA exploit found a few years ago is, that when people go hunting for this game, it'll only be, like, 10-20 bucks, as opposed to the 50 that people were paying back then.
|
Re: FreePlay - 2009-01-03 |
|
|
» Yar!
Cost me $8 at Gamestop :)
A funny thing to note: The game codes for GTA and this are just one different.
GripShift: ULUS10040
GTA: LCS: ULUS10041
Cost me $8 at Gamestop :)
A funny thing to note: The game codes for GTA and this are just one different.
GripShift: ULUS10040
GTA: LCS: ULUS10041
|
Re: akadewboy - 2009-01-03 |
|
|
» Wont be that price for long
Remember when the Lumines exploit was first created? That games was worth about $10 before the exploit, then it quickly sky rocketed. If this exploit is able to install custom firmware on the PSP3000, then you can expect the price of Gripshift to skyrocket even more.
Remember when the Lumines exploit was first created? That games was worth about $10 before the exploit, then it quickly sky rocketed. If this exploit is able to install custom firmware on the PSP3000, then you can expect the price of Gripshift to skyrocket even more.
|
Re: UltimaArmorX - 2009-01-03 |
|
|
» Where's Fanjita?
We could use an eLoader right about now.
We could use an eLoader right about now.
|
Re: Binary - 2009-01-03 |
|
|
» LOL
now gamestop be wondering why people buying Gripshift :P
now gamestop be wondering why people buying Gripshift :P
|
Re: a20z07 - 2009-01-03 |
|
|
» _
wow i should go sell my copy of gripshift now
wow i should go sell my copy of gripshift now
|
Re: Aces In The Palm - 2009-01-04 |
|
|
» funny thing is
everyone will start buying gripshift.
and at the moment its not that useful.
i believe it could be possible to kickstart a HEN mode, but until pre-IPL is sorted...no custom firmware for 88v3 or psp-3000's
everyone will start buying gripshift.
and at the moment its not that useful.
i believe it could be possible to kickstart a HEN mode, but until pre-IPL is sorted...no custom firmware for 88v3 or psp-3000's
|
Re: Justingraziano - 2009-01-04 |
|
|
» ...
I see a PSP 4000 coming very soon.
I see a PSP 4000 coming very soon.
|
Re: UltimaArmorX - 2009-01-04 |
|
|
» Yeah..
I can see it now: Christmas 2009 word gets out and then the launch starts March 2010. *mental sigh*
I can see it now: Christmas 2009 word gets out and then the launch starts March 2010. *mental sigh*
|
by tacopalypse - 2009-01-03 |
|
|
» .
code. running. flashing colors. ooooooo
code. running. flashing colors. ooooooo
|
Re: FreePlay - 2009-01-03 |
|
|
» Yes, yes.
I'm very enthusiastic.
I'm very enthusiastic.
|
by _lainlives_ - 2009-01-03 |
|
|
» keep going...
Freeplay, MaTiAz, keep it going, I want to see how far this thing can be carried
Freeplay, MaTiAz, keep it going, I want to see how far this thing can be carried
|
Re: TheLastGuitarHero - 2009-01-03 |
|
|
» ...
Nah, I bet this was as far as they wanted to get. Once they got the flashing colors it was mission accomplished. ...You're weird.
Anyway, great job to you guys, what surprising news.
Nah, I bet this was as far as they wanted to get. Once they got the flashing colors it was mission accomplished. ...You're weird.
Anyway, great job to you guys, what surprising news.
|
by Cactuar Knight - 2009-01-03 |
|
|
» lol
Is that a typo I see or is that an attempt at "making a funny" - in what part of the world is 25kb a HUGE file? lol
Is that a typo I see or is that an attempt at "making a funny" - in what part of the world is 25kb a HUGE file? lol
|
Re: UltimaArmorX - 2009-01-03 |
|
|
» Twenty-five kilobytes?
You can fit twenty-five thousand and five-hundred ninety-five characters of code with that (excluding spaces and indents)!
You can fit twenty-five thousand and five-hundred ninety-five characters of code with that (excluding spaces and indents)!
|
Re: akadewboy - 2009-01-03 |
|
|
» It's huge compared to the Lumines exploit
The Lumines exploit save file was 2.44 KB. So the GripShift exploit is "Huge" compared to that.
The Lumines exploit save file was 2.44 KB. So the GripShift exploit is "Huge" compared to that.
|
by DarkXCloud - 2009-01-03 |
|
|
» Worst game ever will now be...
This game will now be the best game on the market and there goin' to be like... What?!?! what?!? and then with a Wo0t
This game will now be the best game on the market and there goin' to be like... What?!?! what?!? and then with a Wo0t
|
Re: Justingraziano - 2009-01-03 |
|
|
» ...
I HAVE THIS GAME!
I HAVE THIS GAME!
|
Re: DarkXCloud - 2009-01-03 |
|
|
» .
I never played it, so I don't know if it's bad :| I hate it when people lower my rank.
I never played it, so I don't know if it's bad :| I hate it when people lower my rank.
|
by lee123 - 2009-01-03 |
|
|
» i agree
i have griptshift for the ps3 and it is the worst game i have ever played
anyways about the hack, i didnt have a psp when the GTA/lumines hack was found, and when i did get one it was out of date and everyone was using pandoras, so the only thing i can relate it to is the twilght hack on the wii, is it like that?
also will this bring any better homebrew features to the psp, or will it just be used for installing CW?
i have griptshift for the ps3 and it is the worst game i have ever played
anyways about the hack, i didnt have a psp when the GTA/lumines hack was found, and when i did get one it was out of date and everyone was using pandoras, so the only thing i can relate it to is the twilght hack on the wii, is it like that?
also will this bring any better homebrew features to the psp, or will it just be used for installing CW?
|
Re: akadewboy - 2009-01-03 |
|
|
» .
I don't know anything about the Wii exploit you're talking about, but how the Lumines exploit worked was: You would run Lumines, then after the game would load the exploited save it would execute Homebrew Enabler. Once Homebrew is enabled you could launch the 1.50 downgrader. After you were on 1.50 you could run the custom firmware installer. The GripShift exploit wont bring anything new, it will just hopefully allow us to install custom firmware on the PSP3000 and run homebrew on it.
I don't know anything about the Wii exploit you're talking about, but how the Lumines exploit worked was: You would run Lumines, then after the game would load the exploited save it would execute Homebrew Enabler. Once Homebrew is enabled you could launch the 1.50 downgrader. After you were on 1.50 you could run the custom firmware installer. The GripShift exploit wont bring anything new, it will just hopefully allow us to install custom firmware on the PSP3000 and run homebrew on it.
|
by Tesseract - 2009-01-03 |
|
|
» Hold up...
Did anyone else notice that this miracle of running unsigned code was only mentioned as being tested on CFW, not OFW?
If the video shows this, then I apologise... I can't watch it from where I am right now... But I would hope that it's been attempted on OFW at least once. If not, it's still relatively useless.
Did anyone else notice that this miracle of running unsigned code was only mentioned as being tested on CFW, not OFW?
If the video shows this, then I apologise... I can't watch it from where I am right now... But I would hope that it's been attempted on OFW at least once. If not, it's still relatively useless.
|
Re: akadewboy - 2009-01-03 |
|
|
» .
Yes at first it only worked on Custom Firmware because the save file was decrypted. But the V2 exploit runs on official firmware because Freeplay encrypted the save. If you watch the video you'll see that it's running on an official firmware PSP3000.
Yes at first it only worked on Custom Firmware because the save file was decrypted. But the V2 exploit runs on official firmware because Freeplay encrypted the save. If you watch the video you'll see that it's running on an official firmware PSP3000.
|
Re: FreePlay - 2009-01-03 |
|
|
» Er...
"Did anyone else notice that this miracle of running unsigned code was only mentioned as being tested on CFW, not OFW?"
You mean apart from:
"Damn, it's so cool to actually see this beauty working - and on a PSP-3000 no less!"
?
"Did anyone else notice that this miracle of running unsigned code was only mentioned as being tested on CFW, not OFW?"
You mean apart from:
"Damn, it's so cool to actually see this beauty working - and on a PSP-3000 no less!"
?
|
Re: Tesseract - 2009-01-04 |
|
|
» Thanks!
Heh... I didn't want to be TOO optimistic, then have the rug pulled out from under my enthusiasm. :D Thanks for the clarification, guys. This really is a neat step forward. I really DO prefer the exploits to the Pandora option.
Heh... I didn't want to be TOO optimistic, then have the rug pulled out from under my enthusiasm. :D Thanks for the clarification, guys. This really is a neat step forward. I really DO prefer the exploits to the Pandora option.
|
by eaferrari24 - 2009-01-03 |
|
|
» YES
I KNEW buying that game when it first came out would pay off some day :P
its the worst psp game i own.. by far :P
I KNEW buying that game when it first came out would pay off some day :P
its the worst psp game i own.. by far :P
|
by Silver-Tiger - 2009-01-03 |
|
|
» ...
Nice one.... If pandora doesn't work anymore, get back to basics, game save hacks! ^^
Funny like all these haters who said "PSP-3000 sucks because of scanlines" will now buy the new PSP.
Nice one.... If pandora doesn't work anymore, get back to basics, game save hacks! ^^
Funny like all these haters who said "PSP-3000 sucks because of scanlines" will now buy the new PSP.
|
by KylBlz - 2009-01-03 |
|
|
» FINALLY
YESSSS!!! Someone give that guy like 1,000,000 dollars because i totally would. My PSP 3000 needs CFW and all these stupid -- i mean GENIUS companies making gamesaves that allow you to run code are just perfect
YESSSS!!! Someone give that guy like 1,000,000 dollars because i totally would. My PSP 3000 needs CFW and all these stupid -- i mean GENIUS companies making gamesaves that allow you to run code are just perfect
|
by reeferandsumbud - 2009-01-03 |
|
|
» Finally
thank you! now i finally have an actual reason to buy a psp 3000.
thank you! now i finally have an actual reason to buy a psp 3000.
|
by Metal Jody - 2009-01-03 |
|
|
» oooo!
Those flashing colors gave me a seizure 0_o
Those flashing colors gave me a seizure 0_o
|
Re: UltimaArmorX - 2009-01-04 |
|
|
» Said Metal Jody,
from the hospital bed.
from the hospital bed.
|
by nGoc - 2009-01-04 |
|
|
» A bit confused
could somebody this for me..
in this video
http://www.youtube.com/watch?v=NqIO6ONLhHg&eurl=http://pspupdates.qj.net/New-PSP-exploit-found-in-GripShift-works-on-PSP-3000/pg/49/aid/127658&feature=player_embedded
which is the same video above except a few seconds earlier
The game is run from the memory stick. If correct, how does it work if its a 3000?
could somebody this for me..
in this video
http://www.youtube.com/watch?v=NqIO6ONLhHg&eurl=http://pspupdates.qj.net/New-PSP-exploit-found-in-GripShift-works-on-PSP-3000/pg/49/aid/127658&feature=player_embedded
which is the same video above except a few seconds earlier
The game is run from the memory stick. If correct, how does it work if its a 3000?
|
Re: WiiRolled - 2009-01-04 |
|
|
» OK, let me clear things up for you
In the video you have posted, you can see a PSP-2000 with CFW showing that the exploit exists.
In the video embedded here in the news, you can see a PSP-3000 with original firmware, running the game from UMD and showing that the exploit works there as well ;)
In the video you have posted, you can see a PSP-2000 with CFW showing that the exploit exists.
In the video embedded here in the news, you can see a PSP-3000 with original firmware, running the game from UMD and showing that the exploit works there as well ;)
|
by tobyo1 - 2009-01-04 |
|
|
» Soldiering on with my good old PSP-1000
5.00M33-4 with 1.50 kernal, IMO PSP 1000 in the best, if you can find a decent condition one then I'd say it's the one to get. 1.50 kernal FTW, got all my GBA, GBC and Sega Gamegear games on it :) Hopefully, for you PSP-3000 owners this will compensate for scanlines, once you're all running the latest CFWs. Well done FreePlay!
5.00M33-4 with 1.50 kernal, IMO PSP 1000 in the best, if you can find a decent condition one then I'd say it's the one to get. 1.50 kernal FTW, got all my GBA, GBC and Sega Gamegear games on it :) Hopefully, for you PSP-3000 owners this will compensate for scanlines, once you're all running the latest CFWs. Well done FreePlay!
|
by NEOL - 2009-01-04 |
|
|
» HELL YEAH
First THANX FreePlay, MaTiAz you are the men is the PSP world.
sec NOW I HAVE A REASON TO BUY PSP-3K & i think that now its DAX TIME GO DAX GOO
i will keep a close eye on this hopefully we will see CFW soon 0.0
First THANX FreePlay, MaTiAz you are the men is the PSP world.
sec NOW I HAVE A REASON TO BUY PSP-3K & i think that now its DAX TIME GO DAX GOO
i will keep a close eye on this hopefully we will see CFW soon 0.0
|
by jimftr - 2009-01-04 |
|
|
» i want noobz to release the downgrade.
just remember that it was fanjita and the noobz team that made the downgrade for these savegames and stuff. but now we have pandora they dont have much to do anymore. so lets hope fanjita starts to work on this.
just remember that it was fanjita and the noobz team that made the downgrade for these savegames and stuff. but now we have pandora they dont have much to do anymore. so lets hope fanjita starts to work on this.
|
Re: UltimaArmorX - 2009-01-04 |
|
|
» Yes!
Beggars can't be choosers (and I'm not even begging..) but if it's possible we should expect it from them if not a word sayin it isn't possible, yeah?
Does anyone know if discussion is being made on this matter in the noobz.eu forums? Any verdicts made yet? Production? Testing? Anything??
Beggars can't be choosers (and I'm not even begging..) but if it's possible we should expect it from them if not a word sayin it isn't possible, yeah?
Does anyone know if discussion is being made on this matter in the noobz.eu forums? Any verdicts made yet? Production? Testing? Anything??
|
Re: FreePlay - 2009-01-04 |
|
|
» ?
"just remember that it was fanjita and the noobz team that made the downgrade for these savegames and stuff."
Noobz had nothing to do with this exploit.
"just remember that it was fanjita and the noobz team that made the downgrade for these savegames and stuff."
Noobz had nothing to do with this exploit.
|
Re: Gino D. (QJ. NET Staff) - 2009-01-05 |
|
|
» @ jimftr
Yeah, wish they did, but I'm not sure if Fan is still around to work on it. Here's some good news tho. I saw a couple of the other well known PSP homebrew devs in the forums talking about this too. That includes mathieulh, wololo, hellcat, jas0nuk... the list goes on and on.
Here's to hoping the other devs pounce on this too. I really wanna see how far the psp scene can take this exploit to. To MaTiAz and FreePlay, good job on getting the ball rolling! ^_^
Yeah, wish they did, but I'm not sure if Fan is still around to work on it. Here's some good news tho. I saw a couple of the other well known PSP homebrew devs in the forums talking about this too. That includes mathieulh, wololo, hellcat, jas0nuk... the list goes on and on.
Here's to hoping the other devs pounce on this too. I really wanna see how far the psp scene can take this exploit to. To MaTiAz and FreePlay, good job on getting the ball rolling! ^_^
|
by Achooist - 2009-01-04 |
|
|
» Gratz.
Haven't seen an exploit in...forever..
I thought they have been given up on!
I have a question, do people just randomly buy games and edit them to find exploits?
I mean, WHO BOUGHT THIS GAME?!
Haven't seen an exploit in...forever..
I thought they have been given up on!
I have a question, do people just randomly buy games and edit them to find exploits?
I mean, WHO BOUGHT THIS GAME?!
|
Re: FreePlay - 2009-01-04 |
|
|
» LOL
"I have a question, do people just randomly buy games and edit them to find exploits?
I mean, WHO BOUGHT THIS GAME?!"
I bought it after we knew there was an exploit :)
Beforehand... ISOs, of course.
"I have a question, do people just randomly buy games and edit them to find exploits?
I mean, WHO BOUGHT THIS GAME?!"
I bought it after we knew there was an exploit :)
Beforehand... ISOs, of course.
|
Re: Achooist - 2009-01-07 |
|
|
» asffsad
Ahhh, I see.
Thanks, I thought somebody had to actually buy it.
I got scared. +P
Ahhh, I see.
Thanks, I thought somebody had to actually buy it.
I got scared. +P
|
Re: 93pauott - 2009-01-20 |
|
|
» ...
i did... and, actually, the editor is awesome!
i did... and, actually, the editor is awesome!
|
by DarkXCloud - 2009-01-04 |
|
|
» This exploit....
How are they going to downgrade with this? I can see a phat psp downgrade, but a slim and a 3000?!? They both cannot downgrade to 1.50?!?
What magic are they going to do now? I'm hoping to see what happens next.
How are they going to downgrade with this? I can see a phat psp downgrade, but a slim and a 3000?!? They both cannot downgrade to 1.50?!?
What magic are they going to do now? I'm hoping to see what happens next.
|
by digicron - 2009-01-04 |
|
|
» what??
"It was tested on 4.01M33-2 with US version of GripShift (ULUS10040), and psplink.prx, usbhostfs.prx and deemerh.prx loaded (also without psplink and usbhostfs)."
so....im not quite following. you say this was tested on 4.01M33? does that mean you already had 4.01m33 on your psp? i dont get it.....
if you did have 4.01m33 on your psp and you tested this, what is the point? you already had a cfw?
now dont flame me, this is a logical question. why prove you can cause a buffer overflow exploit in a game, when you already have a cfw, the whole point of a new exploit is so you can ultimately get to a CFW.
"It was tested on 4.01M33-2 with US version of GripShift (ULUS10040), and psplink.prx, usbhostfs.prx and deemerh.prx loaded (also without psplink and usbhostfs)."
so....im not quite following. you say this was tested on 4.01M33? does that mean you already had 4.01m33 on your psp? i dont get it.....
if you did have 4.01m33 on your psp and you tested this, what is the point? you already had a cfw?
now dont flame me, this is a logical question. why prove you can cause a buffer overflow exploit in a game, when you already have a cfw, the whole point of a new exploit is so you can ultimately get to a CFW.
|
by potat4o - 2009-01-04 |
|
|
» POC!!!!!!!!!!!!!!
WOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOT!
WOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOT!
|
by KrAYzIeReYStA - 2009-01-04 |
|
|
» I really hope this exploit comes thru
and CFW is made for it and as functional as slim...it might movtivate me to get the 3000
they havent fixed the scanlines issues with the very new 3000s have they?
and CFW is made for it and as functional as slim...it might movtivate me to get the 3000
they havent fixed the scanlines issues with the very new 3000s have they?
|
by marcosatti1 - 2009-01-04 |
|
|
» .
Can this exploit be possibly used to hack the pre ipl? (I assume so as it is in a game which can be used to go to kernel mode?)
Can this exploit be possibly used to hack the pre ipl? (I assume so as it is in a game which can be used to go to kernel mode?)
|
Re: FreePlay - 2009-01-05 |
|
|
» No.
Game exploits are never kernel-mode exploits. Kernel-mode exploits are in the firmware. Also, the pre-IPL can only be dumped at the initial boot time.
Game exploits are never kernel-mode exploits. Kernel-mode exploits are in the firmware. Also, the pre-IPL can only be dumped at the initial boot time.
|
Re: marcosatti1 - 2009-01-05 |
|
|
» .
Ok, thanks for clearing that up.
Ok, thanks for clearing that up.
|
by 93pauott - 2009-01-09 |
|
|
» .
durr durr.
durr durr.
Contact Us:
|
The QJ.net Network |
|
| Site | Feed |
| QJ.NET | RSS |
| Nintendo DS | RSS |
| PlayStation 3 | RSS |
| PSP Updates | RSS |
| Wii | RSS |
| Xbox 360 | RSS |
| MMORPG | RSS |
| Personal Computer Games | RSS |
| iPhone - iPod Touch | RSS |
| QJ.NET Forums | RSS |
Add QJ.NET
User Favorites - November
| Most Commented | |
| (136) | |
| (57) | |
| (44) | |
| (43) | |
| (39) | |
| (36) | |
| (31) | |
| (30) | |
| (29) | |
| (29) | |
| (26) | |
| (25) | |
| (25) | |
| (23) | |
| (23) | |
| (22) | |
| (22) | |
| (22) | |
| (22) | |
| (21) | |
User Favorites - November
Apple
(3236)E3
(752)Gadgets
(3645)Games for Windows
(6714)iPhone
(651)MMORPG
(7941)Mobile
(2790)News
(871)Nintendo DS
(8542)Opinions & Analysis
(93)Photography
(453)PlayStation 3
(18339)PSP
(17309)Rumors
(169)Science
(2794)Site News
(52)Tabula Rasa
(421)Wii
(14092)World of Warcraft
(3730)Xbox 360
(18409)
Archives
November 2009
October 2009
September 2009
August 2009
July 2009
June 2009
May 2009
April 2009
March 2009
February 2009
January 2009
December 2008
November 2008
October 2008
September 2008
August 2008
July 2008
June 2008
May 2008
April 2008
March 2008
February 2008
January 2008
December 2007
November 2007
October 2007
September 2007
August 2007
July 2007
June 2007
May 2007
April 2007
March 2007
February 2007
January 2007
December 2006
November 2006
October 2006
September 2006
August 2006
July 2006
June 2006
May 2006
April 2006
March 2006
February 2006
January 2006
December 2005
May 2005
