Page 1 of 2 12 LastLast
Results 1 to 10 of 17

Thread: psp 3000 hack comming soon?!

  1. #1
    Senior Member admiral victorinox's Avatar
    Join Date
    Apr 2008
    Location
    michigan
    Posts
    4,940
    Thanks
    1
    Thanked 2,603 Times in 873 Posts

    psp 3000 hack comming soon?!

    there has been a recent gamesave exploit found by MaTiAz, that means the 3000 could be very close to a hack =o

    [ame=http://www.youtube.com/watch?v=HAoZWymTySw]YouTube - PSP Hack: GripShift exploit POC demonstration version 2 - Homebrew code running on the PSP 3000[/ame]

    GripShift has a buffer overflow vulnerability when loading savegames. The savegame contains the profile name which can be easily used to overwrite . The savegame file is pretty big (25kB) so you have lots of space to put your code there. I wrote a simple blob of code to paint the framebuffer completely white (to just indicate that arbitrary code is running). The return address is located at offset 0xA9 in the file. In this poc it points to 0◊08E4CD50 (which is only a few bytes after the return address), and the code starts at 0xCC in the file.

    It was tested on 4.01M33-2 with US version of GripShift (ULUS10040), and psplink.prx, usbhostfs.prx and deemerh.prx loaded (also without psplink and usbhostfs). The decrypted savegame (sorry, couldnít [be bothered to] get Shineís savegame tool working so itís in plaintext form) is in the SDDATA.BIN form which Hellcatís Savegame-Deemer produces (thanks to him, if the program didnít exist I wouldnít have bothered with this). Just copy the ULUS10040SAVE00 directory to /PSP/SAVEPLAIN/ and run the game. EDIT: yeah, donít forget to have Savegame-Deemer working, duh.
    thought some people might be interested

  2. 1 User Says Thank You admiral victorinox For This Useful Post


  3. #2
    Member trekster's Avatar
    Join Date
    Nov 2008
    Location
    Australia
    Posts
    2,188
    Thanks
    53
    Thanked 883 Times in 404 Posts
    Maybe they will be able to get some sort of homebrew running soon?

  4. #3
    Senior Member admiral victorinox's Avatar
    Join Date
    Apr 2008
    Location
    michigan
    Posts
    4,940
    Thanks
    1
    Thanked 2,603 Times in 873 Posts
    on the 3k, and such yes, i would assume so

  5. #4
    Member trekster's Avatar
    Join Date
    Nov 2008
    Location
    Australia
    Posts
    2,188
    Thanks
    53
    Thanked 883 Times in 404 Posts
    Maybe then they can do something from the psp to the ps3 to get that doing some cool stuff as well =D

  6. 1 User Says Thank You trekster For This Useful Post


  7. #5
    Member
    ~WiiHacks ★WiiWare/VC Guy★ ~

    syst3merror's Avatar
    Join Date
    Oct 2008
    Location
    Indiana
    Posts
    245
    Thanks
    10
    Thanked 581 Times in 64 Posts

  8. 1 User Says Thank You syst3merror For This Useful Post


  9. #6
    Senior Member admiral victorinox's Avatar
    Join Date
    Apr 2008
    Location
    michigan
    Posts
    4,940
    Thanks
    1
    Thanked 2,603 Times in 873 Posts
    Quote Originally Posted by syst3merror View Post
    the tool doesnt work, in another report on 3k or anything, but it does run on it

  10. #7
    New Member v0lc0m's Avatar
    Join Date
    Sep 2008
    Location
    Belgium
    Posts
    85
    Thanks
    3
    Thanked 5 Times in 3 Posts
    the battery only puts it in service mode so nothing can be done with it but that... and the exploit works and they are trying to get firstly homebrews then cfw and team noobz in helping FreePlay and MaTiAz to achieve that but if you got i psp-3000 or a 2000 with a ta-088v3 mainboard do NOT upgrade software cause sony might put a block in it for the exploit...
    having problems? ask me
    i can help you

    need a sig help XD

  11. #8
    Junior Member
    Join Date
    Jan 2009
    Posts
    1
    Thanks
    0
    Thanked 0 Times in 0 Posts
    Datel has been sued by sony so there can take a long time before a new one!

  12. #9
    Junior Member
    Join Date
    Jan 2009
    Posts
    22
    Thanks
    0
    Thanked 2 Times in 2 Posts
    I just hope they hack it, cause I want my psp3000 modded soon b4 I freak out

  13. #10
    New Member v0lc0m's Avatar
    Join Date
    Sep 2008
    Location
    Belgium
    Posts
    85
    Thanks
    3
    Thanked 5 Times in 3 Posts
    they actually did it team pspgen made a kinda cfw for it called hen-a


    here is the vid showing it Dailymotion - PSPGEN-5.02HEN-A, a video from MaGiXieN. PSPGEN, Custom, Firmware, 5.02, HEN-A

    enjoy
    Last edited by v0lc0m; 01-26-2009 at 12:16 PM. Reason: type
    having problems? ask me
    i can help you

    need a sig help XD

Page 1 of 2 12 LastLast

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •