Help the PSP 3D community grow!
Vote for us below:
| | Homebrew/Hacking - Discuss the latest available homebrew applications and games. |
Welcome to PSP3D.com - Sony PlayStation Portable News, Homebrew, Hacks, Reviews, Videos, Mods, Forums!
You are currently viewing our website as a guest, which gives you limited access to reply and interact to discussions and other members. By joining our free community, you will be able to post topics in the forums, communicate privately with other members, vote in polls, and access many other special features.
Registration is fast, simple, and absolutely free so join our community today!
|
 | | 
08-16-2006, 06:29 PM
|  | Senior Member | | Join Date: Jun 2006
Posts: 225
Points: 19.91 Donate | | | libtiff vulnerability crash's 2.71 and 2.80, possible exploit?
This is found here
The Following may be False Information (not true).....
By NOPx89: Quote:
Hey guys, iv been messing around with libtiff for a couple of weeks now
and I found something interesting, Im still doing debugging on it and
whatnot, but it crash's the psp and most image viewers, it may be the
begging of homebrew on 2.71 and 2.80 it may not, im not going to release
the source for it just yet, probably in a couple of days once i do
proper debugging to release a full disclosure. i will however post a
link to the image, iv made a small tiff reader program that does the
most ****tiest error checking you have ever seen but i will print a
quick backtrace
Program received signal SIGSEGV, Segmentation fault.
0xb7eae46b in TIFFFindFieldInfo () from /usr/lib/libtiff.so.3
(gdb) bt
#0 0xb7eae46b in TIFFFindFieldInfo () from /usr/lib/libtiff.so.3
#1 0xb7eace97 in _TIFFsetDoubleArray () from /usr/lib/libtiff.so.3
#2 0xb7eacf3e in TIFFVSetField () from /usr/lib/libtiff.so.3
#3 0xb7eacf27 in TIFFSetField () from /usr/lib/libtiff.so.3
#4 0xb7eafd80 in TIFFReadDirectory () from /usr/lib/libtiff.so.3
#5 0x04004000 in ?? ()
#6 0x04004000 in ?? ()
the 0x4004000 was put in by me, iv noticed it hasnt actually overwritten
the instruction pointer and crashed at that address per say, but im sure
i could maybe get something working, if not I then with help this may
become something. Im asking for volunteers, I would prefer someone from
the hitmen or ps2dev crew or SonyXTeam to help, I have recently been
banned from Toc2rta for not releasing any information and whatnot, I
would however like to come back if at all possible and there are no hard
feelings whatsoever. If anyone would like to help or is even the slight
bit interested then get up with me on yahoo my instant messenger name is
hymn_of_a_needle_freak. I am going to jump ahead of myself at the moment
and go ahead and take some inspiration for the old 2.0 exploit and do my
own variation of the framebuffer png(credit goes to skylark on the idea
and niacin for dumping the data on the original version). Im going to go
ahead and work on setting the rest of it up before i concentrate on more
work with the main part of this. Get up with me if your interested.
greetings to the whole psp homebrew team, mainly ps2dev and
sonyXteam(coldbird and the rest of the gang on their irc server) for
taking the time to listen, also groepaz and skylark for putting up with
my hours of retardedness and questions, harleyg and wakawooki for 2.80
testing(your right, the modchip is the **** ) . I would also like to
thank LC for donating me a psp. I dont know to much about the psp at the
moment as i only have 2.71 so if anyone has pointers then please feel
free to share.
thank you
links:
ColdBird| http://fragment.lan.st/nop/proof.tif
x3sphere| http://www.tritoch.net/nop/proof.tif | |
08-16-2006, 06:32 PM
|  | Senior Member
My Mood:  | | Join Date: Mar 2006 Location: N.C. Age: 21
Posts: 319
Points: 40.57 Donate | | way too long to read... but possible exploits are always nice to hear about  |
08-16-2006, 06:44 PM
|  | Designer
My Mood:  | | Join Date: Jan 2006 Location: Oslo, Norway Age: 18
Posts: 2,347
Points: 29.93 Donate | | | cool!! i love new exploits. cant wait to see where this could lead. |
08-16-2006, 06:45 PM
| | | Senior Member | | Join Date: Jun 2006
Posts: 225
Points: 19.91 Donate | | | It may lead down the drain....no-one knows yet |
08-16-2006, 06:52 PM
| | | Designer
My Mood: | | Join Date: Jan 2006 Location: Oslo, Norway Age: 18
Posts: 2,347
Points: 29.93 Donate | | that's what i love about them, you dont know where it will lead  |
08-16-2006, 06:54 PM
| | Senior Member
My Mood:  | | Join Date: Mar 2006
Posts: 460
Points: 100,123.76 Donate | | | im talkin to the guy on yahoo rite now i have 2.80 and wanting to test it
ill post results
and dont u DARE deny this cuz every exploit was before that led somewhere, i no this has a 99% chance of going no where but dont jynx the other 1%! |
08-16-2006, 07:03 PM
|  | Senior Member
My Mood:  | | Join Date: Nov 2005 Location: Arizona Age: 18
Posts: 1,730
Points: 493.11 Donate | | | |
08-16-2006, 07:05 PM
| | Senior Member
My Mood: | | Join Date: Mar 2006
Posts: 460
Points: 100,123.76 Donate | | | |
08-16-2006, 07:11 PM
| | | Designer
My Mood: | | Join Date: Jan 2006 Location: Oslo, Norway Age: 18
Posts: 2,347
Points: 29.93 Donate | | | interresting, but i think it's only hwat they call " the psps self defence system" that makes it turn of if there are any strange stuff happening... i might be wrong (i hope so) |
08-16-2006, 07:13 PM
| | Senior Member
My Mood: | | Join Date: Mar 2006
Posts: 460
Points: 100,123.76 Donate | | i hope so too 
its prob wut u said tho
sony wood shit there pants if the month 2.80(called the uncrackable firmware) was released taht there is homebrew/downgrader for it!! lmfao!
:P | |
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | | | | Thread Tools | | | | Display Modes |  Linear Mode | 
Posting Rules
| You may not post new threads You may not post replies You may not post attachments You may not edit your posts
HTML code is Off
Points Per Thread View: 0.00 Points Per Thread: 1.00 Points Per Reply: 0.10 | | | | |
