PS4 News on Facebook! PS4 News on Twitter! PS4 News on YouTube! PS4 News RSS Feed!

Home PS4 News - Latest PlayStation 4 and PS3 News

February 4, 2010 // 9:20 pm - Today xorloser has 'propered' the recently released GeoHot PS3 Hack in attempt to accomodate all PlayStation 3 Firmware versions with the exploit.

Download: PS3 Exploit Fixed

To quote: As I'm sure everybody heard, the memory access exploit for the PS3 hypervisor was released recently by geohotz. I was finally able to replicate his hack so I thought I'd take the time to help out others who may also have trouble due to being linux n00bs like me.

If I were to post everything at once it would be too much work and I'd never get around to it, so I'll post bits at a time to ensure I actually do post it heh. Today's post will talk about the software side of the exploit.

Please note that the geohotz exploit software was hardcoded for the v2.42 firmware, I have made a small fix that attempts to dynamically support all firmware versions. I have only tested and used it on v3.15 however.

The first step is to install Linux on your PS3 which means of course that this will not work on a slim PS3. I tried a few different Linux distros and after various different issues I settled on using Ubuntu v8.10 since this is the same version that geohotz used.

I suggest using the "alternate" version since it includes a gui which the "server" version does not. You can download the 636MB image below, I suggest using the legal torrent below to save the bandwith of the Ubuntu servers.

Ubuntu for PS3 v8.10 alternate - Torrent

Ubuntu for PS3 v8.10 alternate - Direct Download

After downloading, burn the image to a CD-R and install as you would any OtherOS install. There are many generic and also Ubuntu specific guides for doing this, so I won't cover that here.

Once you have Linux up and running you should log in using the username you created during install. Now open a terminal (Applications->Accessories->Terminal). You can enable the root account by creating a password for it by typing "sudo passwd". You then enter your current users password once and then the new root password twice. The root account will now be usable.

Now type "su" and then enter the new root password to get root access. Create a dir to put everything in. You could probably create this in your home directory, but I created it in the root of the filesystem so that I can share it between root and my user account as well as setting up access to it via samba from my PC.

To create the dir do "mkdir /ps3share", you can call it anything you want, I call it ps3share because I share it with my PC over samba. Now allow all users to read and write to it by doing "chmod a+rw /ps3share". Finally give ownership of it to your normal user account by doing "chown username:username /ps3share" where username is your username.

Next you need to get the "fixed" exploit software onto your PS3. Using a USB flashdrive is easiest. Copy the extracted files onto it from your PC, then insert it into your PS3. It should automount and bring up an icon on your desktop.

Double click the icon to open the file browser. Right click on the USB drive in the filebrowser and choose to "Open in New Window". Then on the left side of the file browser select "File System" and then "ps3share". Now drag the files from the USB drive into your "ps3share" directory.

I have included a binary of the exploit file for those of you who don't want to build it yourself, but for those who do here is how. First you need to fix the location of the kernel headers so they can be found by the build scripts, so do "mv /usr/src/linux-ports-headers-2.6.25-2/ /usr/src/linux-headers-2.6.25-2/".

Now change to the directory with the exploit source in it "cd /ps3share/ps3_exploit_fixed/src" and then build it by typing "make". There will be a lot of warnings but it should create the file "exploit.ko".

You are now set to run the software side of the exploit. DO NOT run it from this terminal while in the GUI, it should only be run from console mode. If you do run it you will not see anything happening, but your PS3 will suddenly become really slow and you will have to turn it off. More about the running of it in a future post.

A summary of the commands to enter at the terminal is below:

sudo password

(then enter users password once, then the new password for root twice)


(then enter root password)

mkdir /ps3share

chmod a+rw /ps3share

chown username:username /ps3share

(where username is replaced by your username)

Now copy the exploit files into /ps3share.

mv /usr/src/linux-ports-headers-2.6.25-2/ /usr/src/linux-headers-2.6.25-2/

cd /ps3share/ps3_exploit_fixed/src



GeoHot PS3 Hack Propered, Exploit for All PlayStation 3 Firmware

PlayStation Follow us on Twitter, Facebook and join us at our new site WWW.PSXHAX.COM!

#16 - e1ace - February 5, 2010 // 12:29 pm
e1ace's Avatar
How many solder links will need to be made for the hack? Even though I was hoping for a software only hack if it's just one wire then that is pretty easy...

Hopefully this hack will help find a pure software approach - that way the slim's can be included (I just sold my phat for a slim last month).

#15 - craig2k9 - February 5, 2010 // 12:24 pm
craig2k9's Avatar
thanks alot for the updated news. haven't heard much from this but i'm glad there are still people out there working on this exploit hopefully one day in the future we can have a bit of homebrew but untill that day i'll wait thanks a lot to all the devs and everyone else working on hacking this beast

if i could give you rep i would so +rep lol

#14 - Siggy12 - February 5, 2010 // 11:05 am
Siggy12's Avatar
Thank You for the guide and the FIX. I think we are all glad to know what Geohot say during the release , that this HACK is working with each firmware until to 3.15 for now.

NOW I can update in peace.

#13 - SCE - February 5, 2010 // 10:11 am
SCE's Avatar
I wonder what did he used to pulse the bus. FPGA or custom made?

Edit: Xorloser said:

playn: due to possible copyright issues it is best if people dump their own lv1. i plan to fill in the missing bits over the next few days to help anyone dump their own. this information should be enough to enable the types of people that the dump is useful to to dump their own lv1. it is of no use to 99.9999999% of people out there anyway.

george: just using your “smash n grab” button attack for now hehe. there is potential for a not needing it in earlier firmwares, but i’m still looking into that, and most people don’t have these earlier firmwares anyway

#12 - MrCandydance - February 5, 2010 // 9:25 am
MrCandydance's Avatar
Quote Originally Posted by ultimateskillz View Post
so what exactly does this hack allow you to do with your ps3?

Inject code into the "hypervisor channel". Can i express it like that? Because of your question, nothing useful for you yet.

#11 - baddino - February 5, 2010 // 9:20 am
baddino's Avatar
Great work dude!!!! Very cool guide

#10 - ultimateskillz - February 5, 2010 // 8:50 am
ultimateskillz's Avatar
so what exactly does this hack allow you to do with your ps3?

#9 - PS4 News - February 5, 2010 // 7:18 am
PS4 News's Avatar
Quote Originally Posted by heartagram62 View Post
This is all great work by PS3 devs but is there any point in the common man or woman using this hack just yet?

Nah, end-users who have no intention of examining the resulting HV dumps should not bother doing this... especially those whose PS3 is still under warranty.

When PS3 Devs get the dumps and examine them they will share any interesting things found (holes, vulnerabilities, etc) so don't worry. For example, I know CJPC plans to examine the flag data to continue work on his Service Mode PS3 project, in hopes of one day being able to convert it to a fully functional Debug PS3 and ultimately being able to convert retail units.

#8 - heartagram62 - February 5, 2010 // 7:03 am
heartagram62's Avatar
This is all great work by PS3 devs but is there any point in the common man or woman using this hack just yet? Is there a chance of bricking your PS3? I'm all for hacking it but is this hack worth doing just yet because at the moment we don't know how SONY will respond.

#7 - mikewwfman316 - February 5, 2010 // 5:35 am
mikewwfman316's Avatar
great start. well the directions are as clear as day. Thanks for the wonderful guide. I'm prob going to give this a shot once all the guides are up. Just hope we will be playing some Backups soon or some iso from the hard drive.