search

AntiPhotonz / procfw

Automatically exported from code.google.com/p/procfw
0 stars 0 forks source link

Possible exploit for PSP Go #524

Closed GoogleCodeExporter closed 8 years ago

GoogleCodeExporter commented 8 years ago 
Just buyed a PSP Go and put it on 6.60 with Pro-C Fix3 and possibly found an 
exploit. I did not needed to lauch Fast Recovery for returning in custom 
firmware.

What steps will reproduce the problem?
1. Install Pro-C Fix 3 on 6.60 on a PSP Go.
2. Lauch an iso or cso backup game for PSP.
3. Press Home and Choose to pause the game, the running session will be saved.
4. On the XMB, completly shutdown the PSP Go for returning on OFW.
5. Now you are on OFW and need to lauch Fast Recovery for returning in CFW 
Pro-C, instead, resume your game on the PSP Go.
6. Now your last running config while you pause the game as been restored. 
Press home button and quit.
7. You see your iso and cso from ISO folder as been mounted and you are now 
returned in CFW.

So, maybe there is a possibility to exploit the hibernation file on PSP Go, i 
am not enought a skilled programmer for doing this. Maybe this exploit can be 
able to make a permanent fix for PSP Go.

What version of the product are you using? On what operating system?

PSP Go, 6.60 with Pro-C Fix3, 05g TA-091.

Please provide any additional information below.

The game i used was Persona 3 Portable Undub on the M2 Memory Stick slot.

Hope it could help you. ^_^

Original issue reported on code.google.com by syluxdel...@gmail.com on 11 Jan 2013 at 10:03

GoogleCodeExporter commented 8 years ago 
Thats a well known feature of the PSP Go. If you use the save/pause feature, 
while having a CFW loaded, it will save the active CFW too, since it saves the 
current RAM, which included the progress of the game, the CFW itself and other 
active functions (e.g. Plugins).

Since the CFW is loaded after loading the paused game, you wont need a LCFW 
launcher. This isnt working with some games (ISOs) and the pause feature can 
return an error. Having a launcher is still recommended.

Original comment by mirzet.w...@gmx.de on 23 Feb 2013 at 8:18

GoogleCodeExporter commented 8 years ago 
1) We already have kernel exploits for all firmwares and Sony did stop 
publishing them
2) It requires Flash0 access; it would be interesting for VSH exploits when we 
want to get some more access but this would limit its use to PSP-GO models only.

Original comment by devnonam...@gmail.com on 14 Dec 2013 at 3:16