Gathering magic: Libtiff Exploit for Firmware 5.50 found *Update* |
Ó
Want proof? Here, we'll give you not just one, but two videos showing the crash in action:
If you guys want to recreate the crash for yourselves, just download the archive from below.
Download: Libtiff Exploit for Firmware 5.50
*Original article posted May 12, 2009 at 03:02PM
*Update* If you, like some of us, were also wondering why wololo didn't post this on his Wagic blog, then get this: the exploit/crash file isn't really his. From his website, here's his official statement to clarify the matter (emphasis by wololo):
I saw today a buzz on various websites about a youtube video showing a tiff file crashing OFW 5.50, apparently a file created by me.
I am not directly related to this video.
I havenÂ’t looked at the file yet, but it is possible that this is an OLD file I created a while ago and which has proven to be unexploitable beyond firmware 4.20. See here and here (note how old these posts are)
There is also a possibility that someone else found a crash and decided to use my name in the file for some reason, but I find this highly unlikely.
So my official statement right now is the following: Not a fake, not an exploit, just a crash
Related articles:
Via Dark AleX
21 Jumps Custom firmware 5.50GEN-D now out
Contact Us:
The QJ.net Network |
 |
| Site | Feed |
| QJ.NET | RSS |
| Nintendo DS | RSS |
| PlayStation 3 | RSS |
| PSP Updates | RSS |
| Wii | RSS |
| Xbox 360 | RSS |
| MMORPG | RSS |
| Personal Computer Games | RSS |
| iPhone - iPod Touch | RSS |
| QJ.NET Forums | RSS |
Add QJ.NET
User Favorites - December
User Favorites - December
Categories
Archives
Accessories
Add-ons
Applications
Artwork
Batteries
Cheats
Deals
Emulators
Events
Featured Articles
Firmware
Flash Applications
Flash games
Game Demos
Games
Hacks & Exploits
Homebrew Applications
Homebrew Demos
Homebrew Development
Homebrew Emulators
Homebrew Games
Homebrew Themes
How-To
Humor
Imports
Interviews
Magazines
Mods
MY QJ
News
Off Topic
On Shelves This Week
Opinions & Analysis
Podcasts
Previews
PSP Go
PSP Minis
PSP Slim & Lite
QJ How-To Series
QuickJump QuickGuide
QuickJump QuickPeek
Reviews
Rumors
Scans
Screenshots
Site News
Titles
UMD Movies
Videos
Weekend Warrior
Wi-Fi
December 2009
November 2009
October 2009
September 2009
August 2009
July 2009
June 2009
May 2009
April 2009
March 2009
February 2009
January 2009
December 2008
November 2008
October 2008
September 2008
August 2008
July 2008
June 2008
May 2008
April 2008
March 2008
February 2008
January 2008
December 2007
November 2007
October 2007
September 2007
August 2007
July 2007
June 2007
May 2007
April 2007
March 2007
February 2007
January 2007
December 2006
November 2006
October 2006
September 2006
August 2006
July 2006
June 2006
May 2006
April 2006
March 2006
February 2006
January 2006
December 2005
November 2005
October 2005
September 2005
August 2005
July 2005
June 2005
May 2005
April 2005
March 2005
February 2005
January 2005
Comments [refresh]
The exploits have started hapaning.
hopefully a cso/iso back up add on comes from this exploit
but i guess i dont really care.
just good to be able to play homebrew again ;)
keep up the good work homies :)
...lol i have 2.
first post niccas!!!
So what is the exploit and causes for it to happen exactly, any isolation down to the causes???
A Crash doesn't always mean it's an exploit, though this could lead to one.
BTW: I wonder how that is possible, I thought Sony completely blocked the tiff support?
The TIFF file format is unusual in comparison to other image formats, in that it is composed of small descriptor blocks containing offsets into the file which point to the actual pixel image data (composed of bands of pixel rows). This means that incorrect offset values can cause programs to attempt to read erroneous portions of the file or attempt to read past the physical end of file. Like most other image file formats, improperly encoded packet or line lengths within the file can cause poorly written rendering programs to overflow their internal buffers. Properly-written image rendering programs generally avoid such pitfalls.
Multiple buffer overflows have been found in Libtiff.[4][5][6] Some of these have also been used to execute unsigned code on the PlayStation Portable,[7] as well as run third party applications on older versions of the iPhone and iPod Touch
I give it 48 hours and Sony will release FW 5.60
It'd probably be 5.51. That's how they used to do it anyway. Also, I give em a week. The guys writing and editing code have to send and read a ton of memos first. What, you want to go to the bathroom? Hold on, I have to check with the boss man first. . . . Ghey.
owned
Nope, they didn't.
I know wololo could do it :) he has been working on it for a while. now my poor poor friend that just updated to 5.50 can play sweet sweet homebrew :)
wololo knows the difference between a usable exploit and a useless crash. He even wrote a tutorial explaining the difference.
Who said there will be a HEN for the 5.50?
Reading some of the posts at the Dark Alex forum it turns out that wololo did not release this... He said that it's probably just some noob thinking that a crash equals an exploit...
I'd like to think there will in fact be homebrew for 5.50. We can only wait and see
teasing all of us. That's what I think may be going on. or maybe they've left it there to allow just homebrew. Who knows?
wallpaper
i dont know how many like homebrews, i tried playing a couple of emus on my psp, they all suck, the games, the graphics and everything are good in the psp games, as for so many other programs its all junk, a psp is really great if you'r playing the good games on it.
All these exploits are a waste if there is no iso/cso loader and if one has to reininstall hen everytime the psp shuts down, i dont know what all the excitement is about, just upgraded to 5.03 ofw and i still dont use it for anything, even the psptube is not worth it. Sorry i know many are hooked onto homebrews , but its like an INSULT to a psp to play crappy games made for consoles with way less configurations.
Posted by wololo on his blog:
I saw today a buzz on various websites about a youtube video showing a tiff file crashing OFW 5.50, apparently a file created by me.
I am not directly related to this video.
I haven’t looked at the file yet, but it is possible that this is an OLD file I created a while ago and which has proven to be unexploitable beyond firmware 4.20. See here and here (note how old these posts are)
There is also a possibility that someone else found a crash and decided to use my name in the file for some reason, but I find this highly unlikely.
So my official statement right now is the following: Not a fake, not an exploit, just a crash
i got one piece of homebrew for you - pspcomic. i use it way more than i play games on psp. it's not just games and emulators, you know.
and if you judge games only by the way the look - i'm sorry for you, since you are missing out on so much.
yeah that was phrased wrong, typed it on my psp
I wonder if you changed the overwritten function [instead of in the paf] to something else if it would work.. i might want to try this out
if you think everything sucks then YOU spend years deving a good game for no pay. im greatful for the programs, they let me to awesome stuff on the GO
iRShell fixed eboot for 3k
http://forums.mformature.net/showthread.php?p=54651#post54651
Wow, what an extremely untrue and misleading article. QJ is becoming more and more of a disappointment lately.
I appreciate the effort in providing us news, but you seriously need to get on your game. This article is embarrassing to read when knowing the actual facts behind it.
true
what is this ***** with hiding the mac address ><
its totally retarded whats gonna happen if somebody sees it..