2.60 Firmware Exploit - Fanjita Source Download - (Source Code, PSP) - Brewology - PS3 PSP WII XBOX - Homebrew News, Saved Games, Downloads, and More!

2.60 Firmware Exploit - Fanjita Source

Filename	SAVEDATA.rar
Date Posted	Jun 27, 2006
Categories	Source Code, PSP
Tags	PSP
Downloads	1112

Description: Fanjita has released the "source" of his work so far today on this newly discovered exploit. If you would like to take a look at it and continue investigating, have a look!<br><br> Only for v2.5 / v2.6.<br><br> Based on Proof of Concept code by Hitchhikr / Neural.<br><br> Function : Attempts to load ms0:/kernel.elf using sceLoadModule/sceStartModule when in kernel mode, after writing a NOP to 0x8801A5B4.<br><br> Diags: Writes a log of operations to ms0:/GTALOG.TXT.<br> If LoadModule fails, writes the error code to ms0:/failload.trc.<br> If StartModule fails, writes the error code to ms0:/failstart.trc.<br><br>Source for the interesting bit:<br><br>void kernel_proc(void) {<br> // Dump'em all - read access<br> int handle;<br> int luid;<br><br> unsigned int probe;<br> <br> dlog("check dlog");<br><br>#if 1<br> dlog("patch module check");<br> // Patch module check<br> probe = (unsigned int) 0x8801A5B4;<br> probe[0] = 0;<br>#endif<br><br> dlog("load module");<br> // try loading an ELF<br> luid = sceKernelLoadModule("ms0:/kernel.elf", 0, NULL);<br> if (luid < 0)<br> {<br> handle = sceIoOpen("ms0:/failload.trc", O_WRONLY \| O_CREAT \| O_TRUNC, 0777);<br> sceIoWrite(handle, &luid, 4);<br> sceIoClose(handle);<br> }<br> else<br> {<br> dlog("start module");<br> luid = sceKernelStartModule(handle, 0, NULL, NULL, NULL);<br> if (luid < 0)<br> {<br> handle = sceIoOpen("ms0:/failstart.trc", O_WRONLY \| O_CREAT \| O_TRUNC, 0777);<br> sceIoWrite(handle, &luid, 4);<br> sceIoClose(handle);<br> }<br> }<br><br> for(;;) { }<br>}<br><br>
Download File