im ok with javascript, and i dont think that you can do that. you can download but not execute. at least from my view.

wow, ur first post, congrats...

Javascript doesn't even have any real low-level code access.

i think the browser is one of the best way to find an exploit (like Internet Explorer lol) : maybe a picture exploit or something like that in the Browser or maybe an html exploit lol

maybe somthing similar to the tiff exploit, who knows?

well, or a GIF...
but right now, i think from 2.0.1 Sunny have make they hard work for making a non-exploit-able firmware...

flashing EEPROM is good way

__________________

i hope that someone will make a downgrader for FW 2.01+

we all do...and maybe something could come out from this idea?

Javascript could lead to an exploit. It certainly does in IE and FireFox. I'm not sure how the sytem works underneath tho, it seems like that apps only get access to certain system resources depending on how they are run, kinda like root? I dunno I'm a nub. As far as media files etc, I think that would have less to do with the browser and more to do with what lib's and codecs they use. If you can find a buffer overflow in the code that handles the media, that would be the key...assuming that code has access to unprotected system resources. I'm not too faimiliar with how to look for buffer overflows or how to design the "egg" once it is found, I'll have to do some looking. Anyone know where the nitty gritty specs of the psp os can be found?

In windows the javascript platform can access COM+ objects, I'm not 100% sure but I believe that is the origin of most windows javascript exploits.