|
2.70 dowwwnggrade yesssssss
|
|
AfterDawn Addict
|
29. July 2006 @ 00:20 |
Link to this message
|
|
its terabytes :D
|
|
Advertisement
|
|
|
|
|
dakillz
Suspended due to non-functional email address
|
29. July 2006 @ 07:18 |
Link to this message
|
Quote:
Buffer Overflows
Buffer overflows have been the bain of users? existences for many years now.
Practically every Windows, Linux, MacOS, and other operating system or application exploit has been due to these types of issues. A buffer overflow occurs when a system accepts input from another source, such as server software accepting a malicious packet of data from a hacker, and then doesn?t
properly work with the data.
For example, if a server application is designed to accept 256 characters of input from a data stream, such as a form request from the Internet, but instead accepts as much as it can take, assuming the sender will only send 256 characters, a buffer overflow condition can exist. If the application does not trim the data stream to 256 characters, but instead just tries to cram what it received into a 256 character buffer, the rest of the characters received ?overflow? out of the data container and very possibly into executable space (or into other data variables), such as the application heap or system heap, enabling the code to run in the context of the application, which on many consumer machines is administrator-level (basically, the application can do anything).
So, if a malicious user sends 256 Xs, because they know that fills up the 256 character buffer, and then sends code after the string of buffer-filling characters, that code may very well execute, or at least affect other variables in the program. This is what happened with the Code Red vulnerability, Slammer, Nimda, and many, many others?holes in code that wasn?t checking constraints on data.
For all you programmers out there, you may be thinking this is only for those who code in ?unmanaged? languages, like C. Actually other languages can have secure coding issues, such as array bounds issues. Some managed languages also let you run unmanaged code if you flip the right compiler switch?so be careful, and be a safe programmer.
The exploit that enables you to downgrade 2.0 PSPs to 1.5 takes advantage of a known buffer overflow in the TIFF image viewing library that the 2.0 PSP software uses in its photo viewer.
TIFF viewing was a new feature introduced in firmware 2.0, so 1.0?1.52 users cannot take advantage of this hack.
Windows XP Service Pack 2 supports detection of buffer overflows, making sure user data doesn?t
invade the system heap. Even processor manufacturers such as AMD and Intel are building in
capabilities in their processors to mark data as ?No Execute,? so under no circumstances will the
processor execute ?NOX? data, even if a buffer overflow occurs.
Quote taken from "Hacking the PSP" by Auri Rahimzadeh
This was the easiest and best sort of description I could find that should make sense to most people. And as it says Windows XP SP2 has a buffer overflow detection system which is all software based not hardware, so it would be possible that Sony have in 2.01 put in a complete overflow protection system on the whole thing - which would also be advantageous in stopping they're own software crashing. Instead of just fixing the TIFF viewer and leaving other holes open - they might have tho, but by the looks of things whether you do it with a swf, text or any other type of file it looks like you might be able to fill the buffer and possibly even crash the psp but you won't be able to overflow it...
...but then again you might
|
|
Arconn27
Newbie
|
29. July 2006 @ 10:03 |
Link to this message
|
|
dakillz is right. When sony patched the Overflow.tiff, they patched the whole system not just the Photo section. So as of right now Overflow.tiff is unusable. still even with the overflow.tiff (designed for photo exploit) patched we can still use the BIN.data file which is the heart of the whole downgrader. If we can find an exploit in the RSS, Movie, Flash, or even javascript(internet browser) we can create a new one that overflows the psp allowing it to run the bin.data file. my best advise to you is not update because another reason sony creates updates is because they probably find exploits that we dont know about and they want to patch them before we do find out about them
Ibanez Guitars Kick A$$!
|
|
dakillz
Suspended due to non-functional email address
|
29. July 2006 @ 10:56 |
Link to this message
|
|
it would be good if we could modify the already extracted and decrypted 1.5 eboot to check an index.dat file on the memstick instead of the one on the nandflash. Then we could just tell our custom index.dat that its firmware 1.0 or something and run the eboot regardless of firmware - still probably won't help ta-082 owners
btw if you update the index.dat file in your devhook firmware dump, can you tell it's a higher firmware version and hence let it boot stuff for 2.80 etc...
|
Senior Member
|
29. July 2006 @ 11:31 |
Link to this message
|
|
I agree with you that Sony might have made the buffer bigger or patched it totally, but I still can't agree with you that it doesn't work because it hasn't been tried yet. Maybe if the buffer gets overrun that's when you get the "There is not enough memory error," so I don't know if this will every be possible.
|
|
SlickLou
Suspended due to non-functional email address
|
29. July 2006 @ 12:52 |
Link to this message
|
|
This message has been edited since posting. Last time this message was edited on 29. July 2006 @ 22:29
|
Senior Member
|
29. July 2006 @ 23:01 |
Link to this message
|
|
Actually, it was a cunning attempt at a Downgrader, which I guess works but it's really hard to execute and really really risky.
|
|
dakillz
Suspended due to non-functional email address
|
30. July 2006 @ 00:31 |
Link to this message
|
|
does it work with the uk eboot's? cos you can run the US update on a uk psp, so you should be able to run a uk update on a US psp
|
Member
|
30. July 2006 @ 02:28 |
Link to this message
|
ok i was lookin at this movie:
http://www.youtube.com/watch?v=FD6VXLbL7fA&search=2.71
and wondered whether or not game sharing could be used for a downgrader.im no where near an expert on this and i dunno if u could even call me a noob, but could u force the PSP to run unsigned/ corrupt programs through game sharing the way this person ran the homebrew to launch a downgrader on a PSP that is a higher version.Or maybe u could make a homebrew file taht runs on a 1.5 PSP but changes the firmware of a 2.71 PSP via gamesharing... that may have sounded like the most retarded idea ever, but im just a complete total noob.
edit: typos
"Religion is the opium of the masses" - Karl Marx
This message has been edited since posting. Last time this message was edited on 30. July 2006 @ 02:31
|
|
shivam
Suspended permanently
|
30. July 2006 @ 02:54 |
Link to this message
|
|
hey ibjaredu
dont upgrade to 2.7 otherwise u wont be able to run hack on ur psp. i will tell u a example u will not be able to run free games on ur psp with out a umd disk. so i would sugggest any body seeing this not to upgrade 2.7. i can consult u bcz i my self is in sorrow bcz i did so. so listen guys i would suggest u to do it after the 2.7 down gradeer comes out.........
|
|
SlickLou
Suspended due to non-functional email address
|
30. July 2006 @ 10:40 |
Link to this message
|
this guy http://homebrew271.googlepages.com/\found a downgrader for 2.70 what if i use it for my 2.71 will it work...and if not i have to donwgrade to a 2.70 duz n e one no any links? for a 2.70 downgrader??
|
AfterDawn Addict
|
30. July 2006 @ 11:16 |
Link to this message
|
|
SLick this is fake i believe, the site is not even good. the page is even down. Also a 2.7 wont work on 2.71 unless it says, and people who reported a 2.7 downgrader said it doesnt work with 2.71
|
|
SlickLou
Suspended due to non-functional email address
|
30. July 2006 @ 20:23 |
Link to this message
|
|
oouuhhh
|
AfterDawn Addict
|
30. July 2006 @ 20:27 |
Link to this message
|
|
never trust any site like that, only us here at aD, except these people who spam(youll be able to spot em) psp-hacks and QJ.Net.
|
|
SlickLou
Suspended due to non-functional email address
|
30. July 2006 @ 21:14 |
Link to this message
|
|
did u guys hear the FW 2.80 is out now if yall havin troubles wit 2.71...well be prepared for 2.80..
|
Senior Member
|
30. July 2006 @ 21:19 |
Link to this message
|
|
Yeah, I just bricked my PSP on an update to 2.71, so within the next week hopefully i'll have a new one, but until then there won't be much progress, unless Anatomic can do this himself, but he has a 1.5 PSP.
|
|
SlickLou
Suspended due to non-functional email address
|
31. July 2006 @ 03:37 |
Link to this message
|
|
i dont get this whole bricking psp thing...whats hapens to ur psp if it bricks...?
|
AfterDawn Addict
|
31. July 2006 @ 03:38 |
Link to this message
|
|
you have a 250 dollar paperweight with a perty green light.
|
AfterDawn Addict
|
31. July 2006 @ 03:39 |
Link to this message
|
|
it becomes unusable, the power comes on with no screen or sound, then it just shuts off :(
|
Senior Member
|
31. July 2006 @ 11:25 |
Link to this message
|
|
Yeah, I feel so mad that it's bricked. I used to like to play it on the toilet. I beat like 90% of Death Jr on the pot. lol jk. I think i'm going to try and find a <2.01 White PSP. At least I still have my DS, but my brother's using that right now.
|
AfterDawn Addict
|
31. July 2006 @ 11:29 |
Link to this message
|
|
shame, did you brick it doing testing that swf buffer overload thing lol
|
AfterDawn Addict
|
31. July 2006 @ 11:36 |
Link to this message
|
|
can i buy it?
|
|
Arconn27
Newbie
|
1. August 2006 @ 07:44 |
Link to this message
|
I Found a 2.70 Downgrader thats supposed to work but unforntunaly i can't test it because i have 2.71. i ran the 2.71 update thinking that i would make me plug it in to the AC adapter but it didn't and it just ran the update. now i'm screwed. i dont know. If you want to try it go to http://homebrew271.googlepages.com/
Ibanez Guitars Kick A$$!
|
AfterDawn Addict
|
1. August 2006 @ 07:49 |
Link to this message
|
|
dont trust that site its a load of b0110ckz lol
|
|
Advertisement
|
|
|
Junior Member
|
1. August 2006 @ 08:55 |
Link to this message
|
|
is it not possible to make the psp think its a 1.0 psp then run a 1.5 update or make it think its aq 2.6 then run a downgrade dont know much about this but i thought all you guys are smart people and might be able to try one of these things i dont know how it would be done though
It took God six days to create the Heavens and the Earth...and Monty Python ninety minutes to screw it up!
 |
