Help the PSP 3D community grow!
Vote for us below:
| | Homebrew/Hacking - Discuss the latest available homebrew applications and games. |
Welcome to PSP3D.com - Sony PlayStation Portable News, Homebrew, Hacks, Reviews, Videos, Mods, Forums!
You are currently viewing our website as a guest, which gives you limited access to reply and interact to discussions and other members. By joining our free community, you will be able to post topics in the forums, communicate privately with other members, vote in polls, and access many other special features.
Registration is fast, simple, and absolutely free so join our community today!
|
01-20-2006, 04:30 AM
|  | Member | | Join Date: Dec 2005 Location: There, But I Like It Here! | |  Thought on Tiff overflow on 2.01-2.5-2.6
Ok had a thought this morning.
We know the tiff overflow was patched on 2.01+. How did they close the loop hole. Did they patch the libungif, or was it patched in another part of the kernel.
If it was just patched in another part of the kernel, were buggered. If it was patched in the libungif library, here's a thought, and we'll need a coder for this.
Could we not use the 1.5 libungif library coded into a homebrew, or code effectively tiff viewer which should recreate the overflow.
Food for thought, your comments........ 
__________________ XBOX (Executer 2.4 Pro),
PS2 (DMS4 Pro), PS1 
1 x psp giga pack fw 2.01 uk |
01-20-2006, 04:42 AM
|  | Senior Member | | Join Date: Nov 2005 Age: 20
Posts: 2,350
Points: 6.19 Donate | | | Nope, anything with tif is done. I done know everything about it, other then it was COMPLETELY patched up. This wouldnt work for a number of reason, when you ran the tiff you saved it as your wallpaper, this made it go into memory . This is what was able to run code and launch h.bin . Just looking at it wont solve anything. We have already tried inserting code into gif and such, and viewing it with the browser, we are able to, but then nothing works. Someone found a great piece on goggle about it, although I dont remember in which thread it was. The piece fully explained everything, and why we cant run it again, pretty much.
Last edited by Ihateusing2.5 : 01-20-2006 at 05:01 AM.
|
01-20-2006, 04:46 AM
| | | Member | | Join Date: Dec 2005 Location: There, But I Like It Here! | | | Ihate2.5, i was talking about embedding the old 1.5 libungif into a homebrew program, and calling effectively the old 1.5 version to display the tiff. See what I mean.....
__________________ XBOX (Executer 2.4 Pro),
PS2 (DMS4 Pro), PS1
1 x psp giga pack fw 2.01 uk |
01-20-2006, 05:15 AM
| | | Member | | Join Date: Dec 2005 Location: There, But I Like It Here! | | | Sorry Ihateusing2.5 i didnt understand what "there goes your answer means".
Again I may be wrong, but if the libungif is still fragile, using the OLD 1.5 libungif section of the library injected into a howbrew, we would effectively recreate the exploit. assuming as i said they patched the libungif library and not the kernel, to which the overflow exploit leads has not been patched.
__________________ XBOX (Executer 2.4 Pro),
PS2 (DMS4 Pro), PS1
1 x psp giga pack fw 2.01 uk |
01-20-2006, 05:39 AM
| | Senior Member | | Join Date: Dec 2005
Posts: 137
Points: 113.66 Donate | | | They patched the libtiff library, which means that any of the built-in software that uses libtiff will not suffer from the exploit.
Your idea would work, except for one flaw - you need to somehow be able to execute your libtiff-homebrew app, to activate the exploit. If you're able to execute your libtiff-homebrew, then why bother with libtiff - you already have homebrew capability.
In other words - it can't work, because you have no way to execute your crafted libtiff app. |
01-20-2006, 05:45 AM
|  | Senior Member
My Mood:  | | Join Date: Jan 2006 Location: Kent, England Age: 17
Posts: 434
Points: 7.98 Donate | | | i love you fanjita |
01-20-2006, 05:50 AM
| | | Senior Member | | Join Date: Nov 2005 Age: 20
Posts: 2,350
Points: 6.19 Donate | | Ok there goes your answer by fanjita. Same as mine, it cant work. You can read my shitty explanation, or Fanjitas perfect explanation  |
01-20-2006, 06:03 AM
| | | | Fanjita has always answers to our question...
We love you Fanjita. |
01-20-2006, 06:09 AM
|  | Member | | | | Fanjita seems all loved up.. |
01-20-2006, 06:11 AM
| | | Member | | Join Date: Dec 2005 Location: There, But I Like It Here! | | | Fanjita , thanks for your comments. I believe the work your doing is great.
I dont have the coding expertise to do this, but if your right in what your saying. I belive that the older library's for libuntiff are still vunerable. if we were to put the calls into a homebrew to call a new modified version of the libuntiff, this would lead to the execution of the exploit through a homebrew app. It would call the tiff file at a specified location (not like the browser). Thus enablabling overeflow.tif to once again to overflow, purely for a method of downgrading.
I think the work you have achieved todate if fantastic from a homebrew point of view, but there are still a wealth of features available to us on 1.5, as apposed to 2.01+.
Im just pondering the motions of a possible downgrade method.
__________________ XBOX (Executer 2.4 Pro),
PS2 (DMS4 Pro), PS1
1 x psp giga pack fw 2.01 uk
Last edited by shanemac : 01-20-2006 at 07:32 AM.
| |
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | | | | Thread Tools | | | | Display Modes |  Linear Mode | 
Posting Rules
| You may not post new threads You may not post replies You may not post attachments You may not edit your posts
HTML code is Off
Points Per Thread View: 0.00 Points Per Thread: 1.00 Points Per Reply: 0.10 | | | | |
