Report: new VSH user mode exploit found?

Discussion in 'User Submitted News' started by fgghjjkll, Sep 8, 2010.

  1. fgghjjkll
    OP

    fgghjjkll GBATemp MegaMan

    Member
    GBAtemp Patron
    fgghjjkll is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    2,043
    49
    Jul 7, 2008
    The forums down at Lan.St have gone abuzz yesterday after a possible buffer exploit has been found. Details are being carefully kept under wraps at the moment to protect the new discovery, but homebrew veteran wololo has confirmed that it's legit and is hopeful that it could lead to a new breakthrough.

    wololo, whose name is often heard alongside the Half Byte Loader, noted that the new exploit is a "very nice VSH user mode exploit (or very close to it, since there is full control on ra)." He also expressed willingness to work on the new exploit, though he himself admits lack of experience in dealing with VSH vulnerabilities.

    This user exploit also seems to need a kernel exploit, which is similar to how ChickHEN worked. There is plenty of speculation surrounding its possible uses, but everything's still up in the air for now.

    We'll be keeping an eye out for updates as they come.

    Source
     
  2. SPH73

    SPH73 Banned

    Banned
    889
    0
    Sep 2, 2008
    United States
    Very interesting. Half Byte Loader saved my PSP Go from neglect. I'm intrigued by this new project.
     
  3. Arwen20

    Arwen20 GBAtemp Fan

    Member
    324
    0
    Aug 17, 2009
    United States
    I would love to see this area developed. I love my little psp go! As soon as the half byte loader works for bookr I will update my psp go. Right now, I am still on 6.20.
     
  4. prowler

    prowler Sony

    Member
    9,473
    2,816
    Jul 14, 2009
    Ragol
    It's nice to quote your news posts btw.


    also, i'd just wish they would keep their mouth shut if they have found another lame possible exploit. its getting ridiculous now.
     
  5. SifJar

    SifJar Not a pirate

    Member
    6,022
    893
    Apr 4, 2009
    The guy who found the vulnerability (note: despite what the first post says, it is NOT an exploit, its a vulnerability; there is a difference) was not sure if it was vulnerable or if it was just a crash, and wanted a second opinion. Perhaps it was an error to post publicly, but these things come with experience. The vulnerability was available to download for a short time, but unless Sony happen to be monitoring Lan.ST 24/7 and reading every new post, it is very unlikely the files will fall into the "wrong" hands. It was removed quickly and I doubt any n00bs got a hold of it either.
     
  6. fgghjjkll
    OP

    fgghjjkll GBATemp MegaMan

    Member
    GBAtemp Patron
    fgghjjkll is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    2,043
    49
    Jul 7, 2008
    The fact that a possible vulnerability was even found and talked about was stupid. Now it's possible that Sony and their engineers are trying to find said vulnerability. (Which is unlikely they will find the said one but could patch other ones..)
     
  7. superrob

    superrob H4X H4X H4X!

    Member
    2,465
    3
    Apr 4, 2007
    GBATemp factory.
    And you think sony and other companies only patch stuff once somebody says "hey i found an exploit"? No they do that all the time anyway.
     
  8. prowler

    prowler Sony

    Member
    9,473
    2,816
    Jul 14, 2009
    Ragol
    I never said it was a real exploit (note: possible exploit; theres a difference)
     
  9. SifJar

    SifJar Not a pirate

    Member
    6,022
    893
    Apr 4, 2009
    My "note:" was not aimed at you, but the OP and also others who make the mistake. I noticed that you worded your post correctly.