PS4 News on Facebook! PS4 News on Twitter! PS4 News on YouTube! PS4 News RSS Feed!

Home PS4 News - Latest PlayStation 4 and PS3 News

November 20, 2012 // 11:23 pm - Following up on the previous PS3 Lv0ldr / Bootldr clarifications by marcan42 and wololo, today PlayStation 3 hacker naehrwert has shared some details based on reverse-engineering the exploit used to dump it.

To quote from his blog: The Exploit

As the exploit that was used to dump lv0ldr/bootldr/howeveryouliketocallit is public now, let's have a closer look at it to understand what's going on. Here is what I have reversed from lv0 (it shares the syscon portion of the code with its SPU counterpart):

[Register or Login to view code]

The syscon library implements some high level functions, e.g. to shutdown the console on panic or to read certain configuration values. Every of this functions internally uses another function to exchange packets with syscon and the exchange function uses the read_cmpl_msg one to get the answer packet. The top-level function will pass a fixed size buffer to the exchange function.

So if we are able to control syscon packets, e.g. by emulating MMIO (and thanks to IBM we are), we can change the packet size between the two packet readings and overwrite the caller stack. And if we first copy a little stub to shared LS and let the return address point to it, we can easily dump the whole 256 kB.

Nothing more left to say now, let's wait and see if this is going to be fixed in future firmware versions (we just have to check lv0 fortunately).

PS3 Lv0ldr / Bootldr Exploit Reverse-Engineering Details by Naehrwert

Follow us on Twitter, Facebook and drop by the PS3 Hacks and PS3 CFW forums for the latest PlayStation 3 scene and PS4 Hacks & JailBreak updates with PlayStation 4 homebrew PS4 Downloads.

#195 - kalberto - November 1, 2012 // 12:54 am
kalberto's Avatar
all decrypts is surface, but we are still need Duplex, Unsane, Propjoe and others to fix the problems inside the fixed.

such as: the damn data save corrupted, no sound, etc

#194 - PS4 News - November 1, 2012 // 12:48 am
PS4 News's Avatar
This crapola? God I hate having to navigate away from PS3 News for stuff, maybe I'm just lazy

From FB: Since I won't be able to 'play' with the PS3 the way I want for a little while, here's some work to fittle with. (Bricks on 4.30) Installs on 3.55 and below with SEN Access. (And PUBLIC Keys for decrypt are there)

BS File:

#193 - d3adliner - November 1, 2012 // 12:36 am
d3adliner's Avatar
The file this PS3 Scener is talking about has a link posted on ModderExcess45's facebook page. I'd stay far away from it, the guys a known fake & I wouldn't doubt Ps3 Scener is a part of his little scam "dev team" along with the mini-me Jay Leno on crank kid in the YouTube video above.

#192 - Foo - November 1, 2012 // 12:11 am
Foo's Avatar
Oi, I'm getting some reports that the lv2diag.421.self file is false. Awaiting confirmation from Euss.

#191 - PS4 News - November 1, 2012 // 12:03 am
PS4 News's Avatar
Yep, generally most stuff on YouTube is fake... we have a thread for YouTube (fake) stuff but this isn't it so let's try to keep focused here.

#190 - KLAYPEX - October 31, 2012 // 11:53 pm
KLAYPEX's Avatar
PS3SCENER please upload this

hey guys these might be legitimate PS3 4.30 KEYS!!


Maybe we will have a 4.30 jb after all.

if found this on youtube is this a fake?

#189 - Foo - October 31, 2012 // 11:17 pm
Foo's Avatar
I have to clear something up for the noobs... There will more than likely not be a CFW that will install above 3.55 for a very long time. That involves per_console_keys which we only know how to obtain approx 2/5 of them so if we can't get them then how do you think we could exploit them? Exactly.

#188 - d3adliner - October 31, 2012 // 10:59 pm
d3adliner's Avatar
Haha. Yeah, that would be pretty bad. Maybe you're right and they've already been offered a nice amount for it. LoL.

#187 - PS4 News - October 31, 2012 // 10:57 pm
PS4 News's Avatar
I'm a "glass is half full" (optimistic) kinda guy, and yeah I do believe it. Whether he ends up sharing or not remains to be seen, but here is to hoping he does do so publicly and not sell out to Max Louarn, Paul Owen or the Chinese so they can find a way to ReDRM it and cash in on the PS3 scene all over again... that's my biggest fear actually.

#186 - d3adliner - October 31, 2012 // 10:52 pm
d3adliner's Avatar
So you guys are believing it? If the guy was so anxious to get it out there, it would have already been uploaded. Pretty sure the person knows how to upload to one of hundreds of file hosting sites, as was mentioned. It's been over an hour since they said "I have the file(s) necessary for installing CFW of 3.56+ OFW!!!" Sorry, but I don't buy it.