QJ.NET | Videos | Forums | iPhone | MMORPG | Nintendo DS | Wii | PlayStation 3 | PSP | Xbox 360 | PC | Downloads | Contact Us

FrSIRT Reports libtiff exploit as a "RAISED" Risk
Posted Sep 1, 2006 at 11:02AM by QJ Staff Listed in: Hacks & Exploits Tags: downgrader, Exploit, FrSIRT, KXploit, libtiff, Sony
Ó

FrSIRTThe French Security Incident Response Team has flagged the new libtiff exploit. Apparently the exploit, which hasn't been fully implemented yet, is already a target for Sony. With news like this, expect to see a firmware 2.81 within the next two weeks. This is the text, as written on the English page.

"Technical Description

A vulnerability has been identified in Sony PSP, which could be exploited by attackers to execute arbitrary commands. This flaw is due to an error in the Photo Viewer when handling malformed TIFF images using libTIFF, which could be exploited by attackers to compromise a vulnerable device by tricking a user into opening a malicious image."

Trends such as this have been seen before, with the 1.5 KXploit release. 3 weeks later, we were handed 1.51. And then, after the original photo exploit in 2.0, it was only two and a half weeks before 2.1 came out. And with the 2.5/2.6 downgrader came 2.7. And now a 2.8. This is sad news, but we can urge all of you: If you want to use homebrew and you think it's too late since you have 2.8 already, DO NOT UPGRADE. When a 2.81 comes out, you can bet work will continue on hacking the original 2.8.

EXTRA: The FrSIRT page has a references list, and guess who's on it? That's right, QJ. A thread in the Developers Dungeon was added to the research and reference list that contributed to the decision to raise the risk level.

Via FrSIRT

   
 
84 Jumps  Custom Firmware 5.50GEN-D3 and 5.03HEN-C dated
51 Jumps  Sega: Timing sent Valkyria Chronicles 2 to PSP, series could return to PS3
44 Jumps  Watch: Lego Harry Potter: Years 1-4 gameplay trailer
37 Jumps  Advisory: These games aren't fit for kids, says Common Sense Media
36 Jumps  PSP homebrew game: PSP Mario - The New Worlds v0.02
34 Jumps  New Narutimate Accel 3 gameplay video from CyberConnect2
25 Jumps  MaGiXieN: 6.xxGEN is not worth the trouble, 5.50GEN-D3 to be announced in a few hours
25 Jumps  EA CEO wants to turn pirates into paying customers with DLC
21 Jumps  Custom firmware 5.50GEN-D now out
21 Jumps  PSP Homebrew: CFW 5.03 GEN-B for HEN now out!

Comments [refresh]

by milo22 - 2006-09-01 06:24
» FIRST!!

YEP!
by gally - 2006-09-01 06:25
» emm

ok.
by milo22 - 2006-09-01 06:26
» HELLO!!!

2.7 came before the 2.5/2.6 downgrader.
by Mosquito - 2006-09-01 06:27
» 2.71

2.70 and 2.71 were out even before we first heard about updater mode or the downgrader...
by Vidhun - 2006-09-01 06:42
» Well ***** happens

This was inevitable. I mean This is the most eagrly awaited and biggest exploit found after kexploit. What more It can F**k All PSP Firmware after 2.0. Expecting that It would not be fixed soon is just foolishness. But I wonder Where is SONY Going With this. Patching patching and more Patching the more roadblocks they will create the more ppl will lose faith in such a wonderfull device. They must go the Microsoft way and must release a SDK friendly for Homebrew Now. Before DS Or Microsoft take on It with their Portables.
by eggwonder - 2006-09-01 06:51
» lol

so fanjita, ditlew, others who helped... how do you guys like being defined as "attackers" trying to trick a device?



"malicious" isnt that when u are trying to do something bad? how is trying to make you own games malicious?
by Warhawke - 2006-09-01 07:16
» Remote Exploitable, Not

How can they say that libTiff is something that can be exploited via remote? It's not like the libTiff exploit can be run via the web browser. The PSP's browser doesn't even recognise TIF files as an image type, just another file to be downloaded to the MSD.
by Talbain - 2006-09-01 07:18
» Wtf?

How can we get both badasses like Zidane, and dumbasses like these guys in France?
by kersplatty - 2006-09-01 07:19
»

aww man we gt kicked in the balls wid that one, qjs fault aswell lol, frm now on we shud talk in code .. ....... ...... ...... ;; ..?'[..
by asdf - 2006-09-01 07:35
» blah

those who found the exploit should have sat on it a while until 3.0 came out so sony wouldn't have fixed the hole so soon...
by milo22 - 2006-09-01 07:39
» @10

that wouldn't have worked because the exploit is in something that isn't PSP specific.

Meaning that other people would have patched this and $ony would have simply used that patch in 3.00
by Victor - 2006-09-01 08:27
» enjoy

all this homebrew ***** is stupid. do something productive on a pc. enjoy the psp for what it is and quit wasting time.
by MasterQ - 2006-09-01 09:03
» haha

FrSIRT linked to a post in the Developers Dungeon section of the QJ forums, which is restricted to approved devleopers only...
by Hmm - 2006-09-01 09:15
» think ahead

I sure wish they would have kept this exploit secret till the emulator was out, now sony will just fix it.....pretty damn dumb if you ask me.....
by SeanyP - 2006-09-01 09:43
» LMAO!

I love how it states the exploits as being open to "attackers" LOLOLOLOLOL!!!!

anything to make it sound like sony are doing the right thing by patching it up! ;)

Good ole' sony!

1.5 FTW!!!!!!!!!!!! !!
by SeanyP - 2006-09-01 09:47
» @12 and 14

12: I enjoy the PSP for what it is; MINE!!! I'll do what the ***** i want on it thankyou :]

14: That wouldnt have mattered seeing as there isnt a kernel expoit yet on 2.8. unless the exploit magically reopens on 3.0 or whatever.
by Nipples - 2006-09-01 10:23
» DAMN THE INTERNET.

Tis both the cause of our pleasures and our pains!
by egrger - 2006-09-01 12:33
» GIVE IT UP SONY

2.71 downgrader now available, just give it up cause your limpware aint al dente
by fsIRT - 2006-09-01 14:39
» fsIRT are weirdos

Who cares homebrew r0x
by anonymous stranger - 2006-09-01 16:24
» ok?

Vulnerability reported by NOPx86



wow... nice...
by The Smokydoggg - 2006-09-01 17:12
»

Well GEE, maybe if sony would release SOME DECENT SOFTWARE so i could use my PSP FOR WHAT IT IS i wouldn't have to go to the homebrew developers!!!

Besides i bought this machine i paid my damn money and if sony doesn't like that then they can take my psp and give me my money back, and if everybody else does this i'll laugh and watch sony go broke, hey, sony let's not forget the reason you're sitting on that cash is because someone bought your product. NEVER forget that.
by o joy - 2006-09-02 01:43
» oh god, not again

"which could be exploited by attackers to compromise a vulnerable device by tricking a user into opening a malicious image"



oh joy, here comes a remake of the 2.0 bricker trojan. ¬¬
by td - 2006-09-02 01:45
» i bet sony bribed u

i bet sony bribed them

i mean, if u were really clever and wicked enough to be a terrorist to do somthing u would have found another exploit ANYWAY and downgraded and used "terroristic homebrew!" this is juz sony's weak attempt to stop d/graders and h/brew

cmon, u might find homebrew developed for terrorism or summat but this is juz ga* saying it's a way to brick ur psp or something. it's not, it's so we can enjoy what sony has been to laid back to develop
by me - 2006-09-04 03:41
» wtf

"And with the 2.5/2.6 downgrader came 2.7"

wtf

the 2.5/2.6 downgrader came out in July

firmware 2.7 came out in April

also

there was never 2.1

it was 2.01
by montana - 2006-09-17 04:10
»

wher ik can download it
by BadKarma - 2006-09-22 00:00
»

Lol, 'vulnerability', the only vulnerability is in the monopolies annual NET profits...



STICK IT TO THE MAN!



Nice job on the reference QJ...
by sanu - 2006-10-19 04:49
» semia

aaa
Contact Us:

The QJ.net Network

RSS Feeds
Site Feed
QJ.NET RSS
Nintendo DS RSS
PlayStation 3 RSS
PSP Updates RSS
Wii RSS
Xbox 360 RSS
MMORPG RSS
Personal Computer Games RSS
iPhone - iPod Touch RSS
QJ.NET Forums RSS
Add QJ.NET
Add to My Yahoo!
Google Reader Subscribe with Bloglines
Add to your Kinja digest Subscribe in NewsGator Online
Subscribe with Pluck RSS reader Add 'www.qj.net' to Newsburst from CNET News.com
Subscribe with SearchFox RSS del.icio.us www.qj.net
Add to Technorati Favorite! Add to My AOL
furl! it Stumble for Treehugger!
User Favorites - December
Most Commented
MaGiXieN explains release.. (112)
Custom Firmware 5.50GEN-D3.. (72)
Brazilian senator wants cr.. (62)
NPD Study: US kids as youn.. (44)
PlayStation celebrates 15t.. (35)
Traveller's Tales to Sony:.. (35)
Sony: Get a free game with.. (27)
Rumor: Logitech has PSP Go.. (24)
More Estavillo subpoenas -.. (23)
EA CEO wants to turn pirat.. (22)
Scan: New character confir.. (21)
Sony sells 440,000 PS3 uni.. (20)
Buy two, get one free at B.. (19)
Media Create hardware sale.. (18)
PSP homebrew - PSP Live TV.. (17)
Kojima and MGS artist auto.. (16)
PSP homebrew - PSP live TV.. (16)
Tony Hawk: Critics didn't.. (16)
PSP homebrew game: PSP Mar.. (16)
PSP homebrew - MHUSPEED v3 (15)
MaGiXieN: 6.xxGEN is not w.. (15)
PSP Minis to become playab.. (15)
Singer confirms localized.. (14)
PSP homebrew - QMixer v1.0 (13)
Advisory: These games aren.. (13)
User Favorites - December
Top Jumps
Custom Firmware 5.50GEN-D3.. (465)
MaGiXieN: 6.xxGEN is not w.. (213)
MaGiXieN explains release.. (147)
PSP Homebrew: CFW 5.03 GEN.. (78)
Sony sells 440,000 PS3 uni.. (65)
PlayStation celebrates 15t.. (58)
PSP homebrew - PSP Live TV.. (58)
Rumor: Logitech has PSP Go.. (55)
PSP homebrew - PSP live TV.. (53)
Sega: Timing sent Valkyria.. (51)
PSP homebrew game: PSP Mar.. (51)
Sony: Get a free game with.. (51)
Custom firmware 5.50GEN-D.. (47)
Traveller's Tales to Sony:.. (46)
Buy two, get one free at B.. (45)
Watch: Lego Harry Potter:.. (44)
PSP homebrew - MHUSPEED v3 (44)
Brazilian senator wants cr.. (40)
Erik Estavillo subpoenas B.. (39)
PSP homebrew - QMixer v1.0 (38)
PSP Minis to become playab.. (38)
Advisory: These games aren.. (37)
Tony Hawk: Critics didn't.. (36)
New Narutimate Accel 3 gam.. (34)
More Estavillo subpoenas -.. (33)

 Username: 
 Password:
Forgot password
New user registration

Categories Archives


Use of this Web site constitutes acceptance of the TERMS & CONDITIONS and PRIVACY POLICY
Copyright © 2009, QJ.NET. All Rights Reserved. Web Cluster 2.
Contact Us