Gathering magic: Libtiff Exploit for Firmware 5.50 found *Update*

Posted May 13, 2009 at 7:58AM by QJ Staff Listed in: Hacks & Exploits, Homebrew Development, Videos Tags: Exploit, TIFF, wololo, YouTube
Ó


Jackpot! Once exploit fever hits, it washes over everyone completely and utterly. Following the ChickHEN 5.03 exploit from the other day, PSP homebrew developer wololo of Wagic: The Gathering fame someone has now found a Libtiff Exploit for FW 5.50!

Want proof? Here, we'll give you not just one, but two videos showing the crash in action:





If you guys want to recreate the crash for yourselves, just download the archive from below.

Download: Libtiff Exploit for Firmware 5.50

*Original article posted May 12, 2009 at 03:02PM



*Update* If you, like some of us, were also wondering why wololo didn't post this on his Wagic blog, then get this: the exploit/crash file isn't really his. From his website, here's his official statement to clarify the matter (emphasis by wololo):

I saw today a buzz on various websites about a youtube video showing a tiff file crashing OFW 5.50, apparently a file created by me.


I am not directly related to this video.


I havenÂ’t looked at the file yet, but it is possible that this is an OLD file I created a while ago and which has proven to be unexploitable beyond firmware 4.20. See here and here (note how old these posts are)


There is also a possibility that someone else found a crash and decided to use my name in the file for some reason, but I find this highly unlikely.


So my official statement right now is the following: Not a fake, not an exploit, just a crash




Related articles:


Via Dark AleX

 
 
 
Best prices available for:
Price Range:
$39.00 - $60.00
at 10 Stores

Price Range:
$11.00 - $48.00
at 8 Stores

Comments 


 
# CoolScudreloaded 2009-05-12 10:11
The exploits have started hapaning.

hopefully a cso/iso back up add on comes from this exploit

but i guess i dont really care.

just good to be able to play homebrew again ;)

keep up the good work homies :)



...lol i have 2.

first post niccas!!!

Reply
 

 
# Cause?Althor 2009-05-12 10:12
So what is the exploit and causes for it to happen exactly, any isolation down to the causes???

Reply
 

 
# ....Silver-Tiger 2009-05-12 10:55
A Crash doesn't always mean it's an exploit, though this could lead to one.



BTW: I wonder how that is possible, I thought Sony completely blocked the tiff support?

Reply
 

 
# From the Wiki Page on Tiff File formatTaCo925 2009-05-12 10:58
The TIFF file format is unusual in comparison to other image formats, in that it is composed of small descriptor blocks containing offsets into the file which point to the actual pixel image data (composed of bands of pixel rows). This means that incorrect offset values can cause programs to attempt to read erroneous portions of the file or attempt to read past the physical end of file. Like most other image file formats, improperly encoded packet or line lengths within the file can cause poorly written rendering programs to overflow their internal buffers. Properly-written image rendering programs generally avoid such pitfalls.



Multiple buffer overflows have been found in Libtiff.[4][5][6] Some of these have also been used to execute unsigned code on the PlayStation Portable,[7] as well as run third party applications on older versions of the iPhone and iPod Touch

Reply
 

 
# Here it comesjagrege 2009-05-12 11:00
I give it 48 hours and Sony will release FW 5.60

Reply
 

 
# Naw.PinCushion 2009-05-12 11:36
It'd probably be 5.51. That's how they used to do it anyway. Also, I give em a week. The guys writing and editing code have to send and read a ton of memos first. What, you want to go to the bathroom? Hold on, I have to check with the boss man first. . . . Ghey.

Reply
 

 
# gotcha!L0NG 2009-05-12 13:09
owned

Reply
 

 
# "I thought Sony completely blocked the tiff support?"FreePlay 2009-05-12 13:18
Nope, they didn't.

Reply
 

 
# awesomeKylBlz 2009-05-12 15:46
I know wololo could do it :) he has been working on it for a while. now my poor poor friend that just updated to 5.50 can play sweet sweet homebrew :)

Reply
 

 
# Don't worryakadewboy 2009-05-12 16:35
wololo knows the difference between a usable exploit and a useless crash. He even wrote a tutorial explaining the difference.

Reply
 

 
# ...FearEffect 2009-05-12 16:53
Who said there will be a HEN for the 5.50?

Reply
 

 
# Nevermind.akadewboy 2009-05-12 16:58
Reading some of the posts at the Dark Alex forum it turns out that wololo did not release this... He said that it's probably just some noob thinking that a crash equals an exploit...

Reply
 

 
# Glass is half fullNicklit 2009-05-12 17:26
I'd like to think there will in fact be homebrew for 5.50. We can only wait and see

Reply
 

 
# Sony issoopergooman 2009-05-12 17:50
teasing all of us. That's what I think may be going on. or maybe they've left it there to allow just homebrew. Who knows?

Reply
 

 
# nicegenesiscopy 2009-05-12 21:41
wallpaper

Reply
 

 
# really not worth it!!!!!!silk_threads 2009-05-13 02:10
i dont know how many like homebrews, i tried playing a couple of emus on my psp, they all suck, the games, the graphics and everything are good in the psp games, as for so many other programs its all junk, a psp is really great if you'r playing the good games on it.



All these exploits are a waste if there is no iso/cso loader and if one has to reininstall hen everytime the psp shuts down, i dont know what all the excitement is about, just upgraded to 5.03 ofw and i still dont use it for anything, even the psptube is not worth it. Sorry i know many are hooked onto homebrews , but its like an INSULT to a psp to play crappy games made for consoles with way less configurations.

Reply
 

 
# UPDATEDarkFoxSniper 2009-05-13 02:47
Posted by wololo on his blog:



I saw today a buzz on various websites about a youtube video showing a tiff file crashing OFW 5.50, apparently a file created by me.



I am not directly related to this video.



I haven’t looked at the file yet, but it is possible that this is an OLD file I created a while ago and which has proven to be unexploitable beyond firmware 4.20. See here and here (note how old these posts are)



There is also a possibility that someone else found a crash and decided to use my name in the file for some reason, but I find this highly unlikely.



So my official statement right now is the following: Not a fake, not an exploit, just a crash

Reply
 

 
# ...yoshi314 2009-05-13 03:07
i got one piece of homebrew for you - pspcomic. i use it way more than i play games on psp. it's not just games and emulators, you know.



and if you judge games only by the way the look - i'm sorry for you, since you are missing out on so much.

Reply
 

 
# oopsKylBlz 2009-05-13 03:39
yeah that was phrased wrong, typed it on my psp :P ..i meant to say that he may be able to play some without pandora BUT the update says otherwiese. I was totally there on LAN when he was talking about it.

I wonder if you changed the overwritten function [instead of in the paf] to something else if it would work.. i might want to try this out :P

Reply
 

 
# ..KylBlz 2009-05-13 03:42
if you think everything sucks then YOU spend years deving a good game for no pay. im greatful for the programs, they let me to awesome stuff on the GO

Reply
 

 
# news tip (sending QJ the tip wasn't working)KyyubiDX 2009-05-13 03:59
iRShell fixed eboot for 3k



http://forums.mformature.net/showthread.php?p=54651#post54651

Reply
 

 
# asdswSlasher 2009-05-13 16:30
Wow, what an extremely untrue and misleading article. QJ is becoming more and more of a disappointment lately.



I appreciate the effort in providing us news, but you seriously need to get on your game. This article is embarrassing to read when knowing the actual facts behind it.

Reply
 

 
# SadlyNicklit 2009-05-14 22:59
true

Reply
 

 
# .._JG_ 2009-05-15 00:40
what is this ***** with hiding the mac address ><

its totally retarded whats gonna happen if somebody sees it..

Reply
 

Add comment

Security code
Refresh

Add QJ.NET
Add to My Yahoo!
Google Reader Subscribe with Bloglines
Add  to your Kinja digest Subscribe in NewsGator Online
Subscribe with Pluck RSS reader Add 'www.qj.net' to Newsburst from CNET News.com
Subscribe with SearchFox RSS del.icio.us www.qj.net
Add to Technorati Favorite! Add to My AOL
furl! it Stumble for Treehugger!