PS3 Metldr Exploit Leaked

Discussion in 'GBAtemp & Scene News' started by Devin, Nov 8, 2011.

Nov 8, 2011

PS3 Metldr Exploit Leaked by Devin at 10:52 PM (6,775 Views / 0 Likes) 30 replies

  1. Devin
    OP

    Member Devin "Local Hardware Wizard"

    Joined:
    Aug 17, 2009
    Messages:
    5,701
    Location:
    The Nexus
    Country:
    United States
    [​IMG]

    From GaryOPA: We received an 'an0nymous email' from some random one-time dropbox, containing a weird little attachment, with a simple note:

    Program: metldr838exploit
    Author: Unknown
    Usage: Unknown
    Reason: Unknown

    Before posting we had one our PS3 crunching developers look it over, and it seems to be a set of 'C' code and headers and an compiled ELF and SELF that exploits the 'chain of trust' to dump an 'unecrypted' version of your PS3 'metldr'.

    Now of course this is not really 'useful' for the average PS3 Jailbreak end-user, but we think it just might be the long waited for 'golden tickets' in the right hard-working hands of some talented 'developers' that are willing to try to help everyone out by pushing the PS3 'scene' to the next level, that almost everyone here has all have been waiting for!



    Guide

    [​IMG] N/A Provides Download Link

    Sorry guys, didn't know if it contained any of Sony's coding, or whatnot so I left out the source. If I get a a-okay from a higher up, then I'll be sure to post the source containing the download link. If not, a quick Google search should do fine.
     


  2. DrOctapu

    Member DrOctapu Magnificent Bastard

    Joined:
    Dec 23, 2008
    Messages:
    1,207
    Location:
    Hell.
    Country:
    United States
    Uh, Devin...

    Looks cool, btw. No idea what this means, though :3
     
  3. mercluke

    Member mercluke ‮҉

    Joined:
    Dec 2, 2007
    Messages:
    3,161
    Location:
    Perth
    Country:
    Australia
    'strange' amount of 'quotations' in this 'article'

    awesome news, though :3 (3.72+ cfw tiem?)
     
  4. GameWinner

    Member GameWinner Take your heart

    Joined:
    Jun 14, 2009
    Messages:
    4,190
    Country:
    United States
    I don't know what all of this means but hopefully it's something I can use.
     
  5. DinohScene

    Member DinohScene The Gift of Dino

    Joined:
    Oct 11, 2011
    Messages:
    12,889
    Location:
    В небо
    Country:
    Antarctica
    This is interesting.

    Even though I don't own a PS3..
     
  6. coolness

    Banned coolness PSN: Dutch_DarkLord

    Joined:
    Jun 14, 2009
    Messages:
    2,016
    Location:
    Rotterdam Bitches!!
    Country:
    Netherlands
    what can this thing do?
     
  7. Ron

    Member Ron somehow a weeb now.

    Joined:
    Dec 10, 2009
    Messages:
    2,837
    Location:
    here
    Country:
    Canada
    Wow.. I smell another chain of suits and flamewars..

    ..Sony.. :glare:


     
  8. Necron

    Member Necron Lurking~

    Joined:
    Dec 29, 2008
    Messages:
    861
    Location:
    Mi casa
    Country:
    Chile
    ^This. Also, I don't own a PS3, but it would be nice to know what it does.
     
  9. Devin
    OP

    Member Devin "Local Hardware Wizard"

    Joined:
    Aug 17, 2009
    Messages:
    5,701
    Location:
    The Nexus
    Country:
    United States
     
  10. godreborn

    Member godreborn GBAtemp Advanced Fan

    Joined:
    Oct 10, 2009
    Messages:
    691
    Country:
    United States
    from what I understand, the metldr contains the master key for the system. if discovered, sony can't do anything to prevent piracy, homebrew, etc.
     
  11. GameWinner

    Member GameWinner Take your heart

    Joined:
    Jun 14, 2009
    Messages:
    4,190
    Country:
    United States
    If all of this come back to someone whos on 3.70 (me), and they are able to hack it then that person will be extremely happy (me again).
     
  12. gameandmatch

    Member gameandmatch GBAtemp Fan

    Joined:
    Apr 29, 2009
    Messages:
    490
    Location:
    Everywhere and Nowhere
    Country:
    United States
    Dear Sony,

    BWAAAAAHAHAHAHAHAHAHAHAHAHAHAHAHAHA!!!!!!!!

    Sincerely,
    gameandmatch

    With that out of my system, it seems that this will be what godreborn said.
     
  13. DJPlace

    Member DJPlace P!ssed OFF Pyscho of GBA!!

    Joined:
    Apr 16, 2008
    Messages:
    4,480
    Country:
    United States
    i so don't understand this... but if this is true then i can maybe just maybe priate ps3 games LOL!!
     
  14. jamesaa

    Member jamesaa The Prince of Insufficient Light

    Joined:
    Jan 8, 2006
    Messages:
    662
    Country:
    United Kingdom
    So does this lead to newer firmware CFW? or signing like with the PSP? or is it more of a "just for developers" kind of find?

    In other words - is there any reason for me go and blow the layer of dust off my PS3 yet?
     
  15. Gh0sti

    Member Gh0sti iOS Guru

    Joined:
    Aug 19, 2009
    Messages:
    1,302
    Location:
    Inside you, all around you
    Country:
    United States
    i thought the master key was found a long time ago by Geohot?? that was the metldr keys so everything could be signed to make unofficial code look real and create cfw??


    i guess im not fluent in PS3 hacking to fully understand since i dont own one

    im only good at iOS, Wii, DSi, language
     
  16. Foxi4

    Reporter Foxi4 On the hunt...

    pip
    Joined:
    Sep 13, 2009
    Messages:
    22,720
    Location:
    Gaming Grotto
    Country:
    Poland
    To those who don't understand what this means:

    In human language, all applications ran on a PS3 under OFW have to be signed to be booted. Said "key" is not universal and it is used to decrypt data. It is hard to find the "master key" which "fits" to every single PS3, it could literally take years and bear no fruitful results.

    This "exploit" allows you to skip the sign-checking phase entirely - the file is being decrypted without even using one, the PS3 recognizes the application as its own and uses the embedded key.

    If that were true, all of Sony's OFW's would be PWND by now, since Homebrew could be signed. He only found an exploit to run unsigned code on certain Firmwares.
     
  17. godreborn

    Member godreborn GBAtemp Advanced Fan

    Joined:
    Oct 10, 2009
    Messages:
    691
    Country:
    United States
    I could be wrong, but I think he decrypted bootldr--which is where specific firmware keys r stored. sony redesigned the bootldr with firmware 3.6 which is why the keys haven't been found, it can't be hacked, and newer games don't work...or maybe they do in private. metldr is where the master key is stored. it is kept separate from everything else within the ps3 and is the backbone of its security. if the key is discovered, it is impossible for sony to patch since the system's firmware has no direct contact with that sector. it's essentially known as level 0 of ps3 encryption, and one of the ps3's seven cores is completely dedicated to it.
     
  18. Jehuty25

    Member Jehuty25 GBAtemp Regular

    Joined:
    Apr 25, 2011
    Messages:
    244
    Country:
    United States
    Will this lead to putting CFW on 3.73 or making a cfw based on any OFW but you still need 3.55 to install it?
     
  19. JPhantom

    Member JPhantom GBAtemp Regular

    Joined:
    Sep 12, 2009
    Messages:
    113
    Country:
    United States
    so can this be patched by Sony?
     
  20. Foxi4

    Reporter Foxi4 On the hunt...

    pip
    Joined:
    Sep 13, 2009
    Messages:
    22,720
    Location:
    Gaming Grotto
    Country:
    Poland
    Technically, "yes, in newer revisions of hardware", practically - not really.
     

Share This Page