Help the PSP 3D community grow!
Vote for us below:
| | Homebrew/Hacking - Discuss the latest available homebrew applications and games. |
Welcome to PSP3D.com - Sony PlayStation Portable News, Homebrew, Hacks, Reviews, Videos, Mods, Forums!
You are currently viewing our website as a guest, which gives you limited access to reply and interact to discussions and other members. By joining our free community, you will be able to post topics in the forums, communicate privately with other members, vote in polls, and access many other special features.
Registration is fast, simple, and absolutely free so join our community today!
|
01-01-2006, 06:21 AM
|  | Senior Member | | Join Date: Dec 2005
Posts: 204
Points: 0.17 Donate | | | Maybe a new idea..
i tried to know if someone had thought about my idea but i didn't find anything..
Now :
**********
You know that we can put Eboot files in /GAME/Update but maybe we can make a downgrader from a fake eboot like the tiff picture...
Making a fake Eboot files with a code inside to execute a downgrade ?!
Hum maybe or not possible but i just thought about that lol
I dont know , but if someone very good in coding, should try this way (thinkg that upgrading = kernel ? )
********** ==> Impossible So
**********
I saw on internet that there is an overflow with PNG
Anyone know something about that ?
**********
Happy new year*
Last edited by BloodWave : 01-01-2006 at 11:17 AM.
|
01-01-2006, 06:55 AM
|  | Senior Member | | Join Date: Dec 2005 Location: Sydney, Australia
Posts: 273
Points: 0.22 Donate | | | The PSP won't run unsigned code unless you implement some kind of Buffer Overflow attack first to trick it into running it.
__________________ If you're too open minded your brains will fall out.  |
01-01-2006, 07:09 AM
| | | Senior Member | | Join Date: Dec 2005
Posts: 204
Points: 0.17 Donate | | hum yeah so make a Fake Eboot to create an overflow is not possible arrf... 
Last edited by BloodWave : 01-01-2006 at 07:13 AM.
|
01-01-2006, 07:26 AM
| | | Senior Member | | Join Date: Dec 2005 Location: Sydney, Australia
Posts: 273
Points: 0.22 Donate | | | Overflowing an EBOOT is different to overflowing a TIFF, because you wouldn't have a chance to run the EBOOT anyway caus its not signed. TIFFs on the other hand don't need to be signed.
__________________ If you're too open minded your brains will fall out. |
01-01-2006, 09:47 AM
|  | Senior Member | | Join Date: Nov 2005 Location: India Age: 20
Posts: 129
Points: 0.41 Donate | | | why dont we we use the 2.6 update and inject a code in it which would make overflow.tif work
that has to work |
01-01-2006, 10:45 AM
|  | I'm eatin' ur Bandwidthz!
My Mood:  | | Join Date: Nov 2005 Location: Foodcourtia. Spooky, yes?
Posts: 3,637
Points: 84,973,253,489.59 Donate | | | well because the psp knows if the file has been edited. but it might work if you get lucky. |
01-01-2006, 12:52 PM
|  | Senior Member | | Join Date: Dec 2005 Location: Middle of nowhere
Posts: 235
Points: 0.80 Donate | | | But lucky is not good enough: Brickchance. |
01-01-2006, 12:57 PM
| | | Quote: |
Originally Posted by ngage123 why dont we we use the 2.6 update and inject a code in it which would make overflow.tif work
that has to work | No, no and no! We said eboot files are encrypted, sony has a private key that encrypts eboots and the psp has a public key to decrypt it. So we can't create an eboot that the psp will run cause we haven't the private key to encrypt our softs! Even if you decrypt an eboot and change its assembler code it's useless, you won't be able to re-encrypt it and make the psp run it!!! There's also another security: a MD5 hash, it you change the smallest bit in the eboot, the hash will be corrupted! So we can't do anything with eboot files! And don"t ask if we can find the private key, cause it's an RSA key, it size is variable, it could be a 128 bits, or 2048 why not? To find it with brute force attack we'll need billions of years so it's totally impossible!
The PNG bug you told exists, the eboot file is in fact a .tar archive with few files, encrypted binary files, an .sfo file with parametres and a png icon for the programm, it was found that the psp doesn't check if the syntax of this png is correct and some bug (not exploits were done with it), see ps2dev forum about it!  |
01-01-2006, 01:00 PM
|  | Member | | Join Date: Dec 2005 Location: Brooklyn new york | | | i totaly agree with Alex
we should pay sony for the code |
01-01-2006, 01:01 PM
|  | Senior Member
My Mood:  | | Join Date: Nov 2005
Posts: 372
Points: 4.28 Donate | | Quote:
No, no and no! We said eboot files are encrypted, sony has a private key that encrypts eboots and the psp has a public key to decrypt it. So we can't create an eboot that the psp will run cause we haven't the private key to encrypt our softs! Even if you decrypt an eboot and change its assembler code it's useless, you won't be able to re-encrypt it and make the psp run it!!! There's also another security: a MD5 hash, it you change the smallest bit in the eboot, the hash will be corrupted! So we can't do anything with eboot files! And don"t ask if we can find the private key, cause it's an RSA key, it size is variable, it could be a 128 bits, or 2048 why not? To find it with brute force attack we'll need billions of years so it's totally impossible!
The PNG bug you told exists, the eboot file is in fact a .tar archive with few files, encrypted binary files, an .sfo file with parametres and a png icon for the programm, it was found that the psp doesn't check if the syntax of this png is correct and some bug (not exploits were done with it), see ps2dev forum about it!
| In plain english please. | |
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | | | | Thread Tools | | | | Display Modes |  Linear Mode | 
Posting Rules
| You may not post new threads You may not post replies You may not post attachments You may not edit your posts
HTML code is Off
Points Per Thread View: 0.00 Points Per Thread: 1.00 Points Per Reply: 0.10 | | | | |
