Eggsclusive: the tiff exploit works on all models! (yes, 3000 too)

April 15, 2009 in security by wololo | 18 comments

thanks sable0119 for this great picture

thanks sable0119 for this great picture :)

My titles are so funny I can’t stop laughing :/

Ok, I haven’t tested it myself yet, but a trusted source confirmed that Matiaz’s tiff exploit for the slim works on all slim models, including ta88v03 and the psp3000.

Here the email I got a few hours ago from Noob81:

Yep… just tested it… code is running on my psp 3000! p2s2p showed us a way to get it working! Too hard to explain here… got to DAX forums! (oh yeah, you have to upgrade to 5.02 though.) there is a video there also.

here is the video: http://www.myvideo.de/watch/6280818/Psp_3000_tiff_expolit_works_UPDATE

And another one:

They keep coming:

Now, I wouldn’t trust that kind of claim without testing it myself first, but I definitely trust Noob81, and seeing everyone started confirming it over at DAX’s forum, this is real, and I’ll try to confirm it with my eyes on my own model tonight.

Now, it seems the exploit works way better on recent firmwares, namely 5.02 and 5.03 (actually, nobody’s managed to have it run on 4.xx). But unless you’re a developer, don’t stupidly upgrade until this whole thing is actually useful for you as a user!!! Especially, if you upgrade, take responsibility for it, and don’t blame other people for your own mistakes.

If/When it is useful to really upgrade, big PSP news sites will let you know, until then, this is still work in progress.

To continue with the good news, Davee confirmed on MForMature’s forums that he is working on a Kernel Exploit which will probably become the key to a HEN on new firmwares. Let’s stay calm, it’s not done yet, anything could happen, but so far, all of this is looking very promising :)

For those who didn’t get it, in simpler words: The PSP 3000 has been hacked, for real!

Related posts

  1. Tiff exploit on its way
  1. Fibertek’s avatar

    Fibertek on April 15, 2009 at 4:33 am

    word… Im still using a vader-style 2000 but I have a bunch of people at work that suckered to get 3000′s after they came out..there’s hope for these folks yet :)

    Reply

  2. VirgilX’s avatar

    VirgilX on April 15, 2009 at 8:56 am

    Thank goodness, it’s for real~~~

    Reply

  3. inkubux’s avatar

    inkubux on April 15, 2009 at 11:50 am

    This is the gift of the goddess

    Reply

  4. amorphophallus’s avatar

    amorphophallus on April 15, 2009 at 12:49 pm

    whatta beautiful! (kitten too)

    Reply

  5. mupengju’s avatar

    mupengju on April 16, 2009 at 10:45 am

    congratulations to you?
    your friend?mupengju

    Reply

  6. leetang’s avatar

    leetang on April 16, 2009 at 5:20 pm

    good news for us
    bad news for SONY

    Reply

  7. leetang’s avatar

    leetang on April 16, 2009 at 5:51 pm

    Good night··The time is 23:54 in China.

    Reply

  8. psp’s avatar

    psp on April 17, 2009 at 12:51 pm

    3000 was to break the V3 we will remember it? Hope you answer

    Reply

  9. lanyudidi’s avatar

    lanyudidi on April 18, 2009 at 2:37 pm

    you are so cute for explaining why you want pspers to comment in english not in chinese~~~~
    but i really want to know that
    how do you get the materials for hacking psp?

    Reply

  10. NyghtcrawleR’s avatar

    NyghtcrawleR on April 20, 2009 at 6:54 am

    So we are getting closer to ad-hoc being worked on/thought about implementing soon if this allows you some homebrew goodness on your 3000 are we Wololo? :)

    Reply

  11. wololo’s avatar

    wololo on April 20, 2009 at 7:06 am

    @NyghtcrawleR: definitely! When the HEN is out, first thing I’ll work on is having Wagic to run on it (in case it is not already compatible). When this is done, I’ll start working on network features!

    @lanyudidi: I have 2 PSPs, a Phat and a 3000. The architecture being very similar, I do most of my research on the PSP Phat, and usually, any firmware hack found on the Phat will work on the 3000 too. I have no extra hardware, except a USB cable to plug my PSP to the computer. For the rest, I mainly use PSPLink, which is open source software (you can find it on ps2dev.org)

    Reply

  12. NyghtcrawleR’s avatar

    NyghtcrawleR on April 21, 2009 at 4:05 am

    HEN cant come soon enough! haha

    Reply

  13. jeerum’s avatar

    jeerum on April 23, 2009 at 11:02 am

    wololo, who confirm that tiff kernel exploit is real?

    Reply

  14. wololo’s avatar

    wololo on April 23, 2009 at 11:11 am

    The tiff exploit is not a kernel exploit. The tiff exploit is what led to the Hello World, and is different from the Kernel exploit Davee is working on. In the end however, the HEN will need to use both the User exploit (to start) and the Kernel exploit (to access useful functions).

    Also I am not directly in contact with Davee so I can’t confirm if the Kernel exploit is real or not. however he has a good reputation and was involved in the tiff (user) exploit as well, so I trust him.

    Reply

  15. jeerum’s avatar

    jeerum on April 23, 2009 at 11:21 am

    but have we some tutorial, how find kernel mode exploits?

    Reply

  16. wololo’s avatar

    wololo on April 23, 2009 at 12:18 pm

    Nope, no tutorials… :(

    Reply

  17. jeerum’s avatar

    jeerum on April 23, 2009 at 12:56 pm

    but i have found this. poc, but kmode :)
    http://www.maxconsole.net/content_dwnl/Exploit_2.6.zip
    we can use this fo study

    Reply

Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>