| View previous topic :: View next topic |
| Author |
Message |
|
|
Post subject: PSP ..... stuff
|
 |
|
If you're up for a little reading, heads up for the next 2 news posts. 
| Quote: |
PSP 2.0 Firmware cracked
Buffer overflow exploit opens up possibilities of homebrewed code on Sony's handheld.
When Sony released the PSP in March, many a gadget groper's eyes lit up. The possibilities of tinkering with the portable's insides seemed almost limitless. Several applications for the PSP began appearing on the Web, with programs ranging from Atari 2600 emulators for some retro gaming to ones that turned the PSP into a TV remote control.
To countermeasure possible piracy and illegal trading that could cost them millions, Sony has periodically released firmware upgrades that prevent hacks and homebrewed code to be run on the handheld. The upgrades aren't strictly for security measures, as each upgrade also has minor system updates.
The most recent release by Sony, Firmware 2.0, added a Web browser and other additions while functioning as a steel curtain for hackers. Many PSP owners that run user-created programs on their PSPs refused to upgrade to 2.0, as the upgrade blocks several unlicensed programs from running.
Web site PSP Updates is reporting that hackers may not be shut out after all. One amateur programmer has allegedly made a file that "allows for a buffer overflow to be run via the photos menu in Sony PSP firmware v2.0." The tech jargon may be over the heads of most casual gamers, but in layman's terms it means that homebrewed coding for PSPs that are running Firmware 2.0 may be possible in the future.
The author of the file makes it clear that the program was not intended to be used by pirates looking to load illegal copies of pirated games. "We didn't do this so you could steal from Sony and game companies. We believe in OSS (Open Source Software). There are plenty of amazing programs that have been written for the PSP. Use this as a gift and not as an excuse to steal."
He also left a note to Sony. "If you wanted to find us i know you could. This release wasn't intended as a way to run pirated software on the PSP. We believe that everyone should be able to compile their own code and run it. Nothing is kept secret forever and I'm sure you know this. In the end, if it wasn't us, It would be some one else. Fighting it would be like skating up a hill. You did create the PSP and did an amazing job."
Though fans aren't required to upgrade their firmware (the update has to be installed manually), Sony will begin requiring PSPs to run the latest firmware to play certain games. |
^ Source: Gamespot - 26/09/05
| Quote: |
2.0 Overflow Found and Working
We have received an email from someone named 'foo bar' (now revealed as toc2rta) with a file made by unknown, which allows a buffer overflow to be run via the photos menu in Sony PSP firmware v2.0. Although it is not currently possible to run homebrew code with this exploit, the door is wide open for the future. Here is what the readme says:
First Homebrew Code on 2.00
1. Set wallpaper to frame_buffer.png (without overflow.tif present
in the PHOTO directory, or it will crash).
2. Add overflow.tif to the PHOTO directory, and open into the photo
viewer. Custom code to paint the screen! Or to write a homebrew
app! Not to run illegal games.
How It Works?
1. The PNG contains a small amount of code in a known, fixed place
(the VRAM). If to look closely at the wallpaper, sees small
coloured pixels in the right down. The pixels are Allegrex
opcodes, with the highest byte all zero for the ALPHA. These
pixels do:
syscall 0x20C7 ; sceKernelDcacheWritebackInvalidateAll
slt a0, zero, sp ; put 1 into a0
sll a0, a0, 6 ; put 64 into a0
addiu a0, sp, a0 ; get screen painter address over SP
jr a0 ; jump to the screen painter
nop ; branch delay slot
2. The TIFF contains also some code and a buffer to trigger the
known BitsPerSample overflow in libtiff in the photo viewer.
The buffer makes a jump to the VRAM which has the PNG colours
by overwriting the safed ra (return address) on the stack.
The VRAM code uses SP and calculates the address of the buffer
then runs it. Then it jumps there. The screen is yellow as
the colour was 0x12345678 in Hex.
PSP Users:
We didn't do this so you could steal from Sony and game companies.
We believe in OSS. There are plenty of amazing programs that have
been written for the PSP. Use this as a gift and not as an excuse
to steal.
Sony:
If you wanted to find us i know you could. This release wasn't
intended as a way to run pirated software on the PSP. We believe
that everyone should be able to compile their own code and run it.
Nothing is kept secret forever and I'm sure you know this.
In the end, if it wasn't us. It would be some one else.
Fighting it would be like skating up a hill. You did create the
PSP and did an amazing job.
Toc2rta:
To the people of the Toc2rta development network. You're our phone
a friend. With out your friendship this would never of happened.
I hope this brings you as much happiness as it brings us.
Join us on irc.toc2rta.com, #pspchat
Most importantly... Have fun!
We have tested this and here is how it looked after going to the photo directory:
Thanks to the unknown author(s) for this great starting point to have homebrew on 2.0, all that is needed are coders to extend this knowledge for full homebrew usage on the v2.0 firmware. We cannot say when someone will step up to the plate and write the code for users to run homebrew on a 2.0 using this exploit, but we will definitely have our ears (and email boxes) open and be sure to let you know as soon as we do. =) |
^ Source: PspUpdates - 23/09/05
This site, 'pspupdates' is one to keep an eye out for. ;)
Note: PSP owners with Firmware version higher than 1.50 should beware 
_________________
http://www.devilsheaven.eu |
|
 Sun Oct 02, 2005 2:42 am |
|
|
|
|
Post subject: Post Update:
|
|
|
While some of you may know the site pspupdates..I happen to just found it last nite. And surprisingly enough I bumped on this 'Working Firmware Downgrader - 2.00 > 1.50' (somewhere half way down the page)
So, this means for those who have 2.00 (like me) and would like to try out home brewed Code, you no longer have to cry out loud. Just downgrade it.
Use with caution and at your own risk.
Note: Those with 1.51 or 1.52 need to upgrade to 2.00 first and then downgrade.
_________________
http://www.devilsheaven.eu |
|
| Sun Oct 02, 2005 6:59 pm |
|
|
|
|
Post subject:
|
|
|
ugh did u see there latest news note ..
hooray u can get media manager now .. !!!
woopie now i have to buy a sd-card were it actually fits on ..
just sony's way to say "look more crap but buy our thiniges before installing this crap  "
>.<
_________________
Does this rag smell like chloroform to you?
---
I am 67% addicted to World of Warcraft. What about you? |
|
| Tue Nov 14, 2006 3:48 pm |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
