Vita hack: Davee releases a Vita Native exploit through Webkit (but there might be a catch)
It’s been long awaited, teased a few times recently, and it might finally be here: a native vita hack.
Famous ex-psp hacker Davee released yesterday a proof of concept exploit for the PS Vita, running through the webkit browser. (and yes, you get to try it, hold on!)
Davee came back to life a few weeks ago, releasing a framework to help with the development of exploits on ARM CPUs, through RO programming based hacks. It wasn’t long before he announced this exploit.
Now here’s the catch: in its current form, the exploit only runs on Vita firmware 2.60. Davee stated that it should be easy enough to port to other firmwares (there are a few entry point addresses to update, it seems), but it is extremely likely that it is patched in firmware 3.30. I have no full confirmation of that (although I did test), but my gut feeling tells me Davee would not release “just” a proof of concept if there was a possibility this could still be used on the latest Vita firmware. Yifan Lu stated that this might actually be the same exploit found by other people independently, that had been confirmed to be patched after firmware 3.18.
@frwololo @DaveeFTW will know for sure, but it's my understanding that the same exploit was found independently by other parties and patched
— Yifan (@yifanlu) October 18, 2014
This confirms once again that people waiting for an exploit should stay on lower fiwmares as much as possible (says the guy who just updated to 3.30 yesterday…).
Give it a try
On firmware 3.30, unless I messed up some of my copy/paste, the hack fails at the very first step, which isn’t firmware specific. This indicates that the exploit is indeed patched on 3.30. Feel free to give it a try in particular if you are on firmwares 3.18 or lower. We’ll have more details on the exploit very soon!
Try the exploit on your PS Vita: http://wololo.net/v/260.htm
Update: many people are asking what the exploit should look like when it is “working”. The “full” proof of concept only works on 2.60, but on other firmwares, anything else than an error code is a good sign. For example, people on 3.18 and 3.20 report that the page stays there for a few seconds then reloads: this is a good sign.
Source: Davee’s bitbucket, via YifanLu
Bit of a shame I updated from 2.60 to 3.18 because I couldn’t get the PS1 loader to work.
Still, very excited about what the future is going to bring
i get it tnx mr.wololo ill stay in 3.18
more power mr.davee and mr.wololo
https://github.com/BrianBTB/codelion_poc
could upload it like 260 for the noobs ?
unfortunately wololo will have to do it, also my code uses netcat for output and is multiple files. Would be pretty simple to change it but I’m busy with some more developments
DO NOT DO THIS!!!!!!
I am on 3.18 . I did this and it just refreshed. However, in doing so, I am not sure what happened, but now whenever I try to run QCMA, I connect my Vita and it keeps telling me I need to Update. So now I can not run the Content Manager.
Are you referring to the original post or the Codelion’s git ?
hey mate, I have been having the same problem on 3.18 in general. put your vita in airplane mode, turn it off.
Put your computer in airplane mode or unplug ethernet and reboot
turn back on and they should connect, then it ok to reconnect your computer to the internet
This one where it has the Link for the Vita. However, Disregard my Comment. After you do this, Shut Down your Vita and then Start it up again. I guess it did something, but upon restarting, it clears it out.
Disregard. I Shut Down my Vita and when I started it back up it ran perfectly fine.
I don’t care if it doesn’t work on 3.30 or how long it takes. Davee knows what he’s doing and doesn’t get the respect he deserves. Long live 6.20 ~
page refreshes on a 3.18 fat vita.. 😀
I got a vita with the uno exploit (2.02)
should i stay on the version I am on right now… or update with some kind of program?
Hey anyone, could this lead to an exploit to activate a system offline sort of like that PSP hack thing where you could enable WMA music files without activating online?? Thanx!
Im a PSTV owner stuck with unactivated system on FW 3.20!!
3.30 fail
error 1
Filthy casual.
We told you not to update to FW 3.30.
On 3.18 here, it just does a reload of the page like mentioned above, but no errors. so I guess I’m good as long as I stay here on 3.18 correct? I did listen and am staying here.. I do have another Motherboard for my vita for testing if needed though. Thanks guys for your hard work 🙂
Same here but try these two I bet they’ll give you what you were expecting:
http://www.lolhax.org/vita.htm
http://wololo.net/v/webkit/vita.htm (mirror)
😉
I’m still on 3.18 and prepared to stay there a while… I’m still getting used to seeing Davee in ps news again, but glad to see it. Usually only see him on tweeter 😛 Nice to here that the webkit attacks are making progress on Vita as well now!! Keep it up fellaz
it seems that you can try http://www.lolhax.org/vita.htm
This one made 2 popups appear on 3.01, so i say progress xD
Credits go to Davee here http://www.lolhax.org/2014/10/19/psvita-webkit-exploit-information-and-credits/
I think this one works on 2.+ till 3.18
It gives me the pop up that says “Congrats, this vita is vulnerable” Is this what should happen or there is more?
Ps vita firmware 3.18
on 3.18 on this one I get Found webkit at:81b00818. no errors, I suppose thats good?
in my case no error message the page reloads 🙂 my fw is 3.18
I tried it on my ps4 and it created a living breathing klingon and she tried to kill me with snusnu. be careful with stealing vita games I hear that creates klingons too. Special protections from sony
Tried it on 2.12. Just reloads the page, but no error message, so it seems to be working
After a couple minutes (just like it advised), it reports the 2.12 Vita is vulnerable.
Can anyone say whether it is patched on 3.18? :0 first a kernel exploit now a NATIVE VITA HACK! We are finally in for some goodies
No, you illiterate jackass.
ofc not, this is just usermode.
I’d say pirate 3DS game and run it on PSVita is possible (read: emulation), Vita GPU is around 10x power of 3DS GPU.
nope it isn’t, and I’m an idiot for thinking it is
http://kyokojap.myweb.hinet.net/gpu_gflops/
ouch someone is salty because 3DS GPU is so weak, that goes to CPU too. LMAOOOOOOOOOOOO
You’re almost as moronic as StealPSVitaGames above you. No, we can’t just pirate 3DS games and play them on the Vita because the 3DS is not fully exploited yet and no emulation method exists for it. And you still wouldn’t have enough raw hardware in the Vita to do it from a usermode exploit.
Emulation requires far more power.
nothing happen on 3.01
Im on 3.18 and when i click start it powers off my vita and it restarts.
Thats intended.
Yes. Yes we can.
We can also run PS4 games on it via the Install0us Now (a PS Now hacked) Store.
Aint progress great?
such a helpful comment! rofl
I’m on 3.18 and the side reloaded for me no error message
But what will the Exploit allows us to do ?? Will i be able to play pirated games, download PS Vita games for free from Sony Servers without use of account
Piracy is off the table on this website, and for all the people involved in this hack so far, so you’re not asking the right people.
Hmm, soo ppl who trying hack vita only want launch of homebrews but not vita games?man that sucks
Piracy for vita games is also pretty pointless, just buy the games you like as the Vita’s library isn’t that huge at all. It is completely manageable hobby even if in a *poor* country a game every 3 or 4 months isn’t that bad.
I mainly want to play emulators, do I need to hack my vita for this? I
ve found a lot of videos showing off VHBL and emulators on 3.35 but I can’t find any “how to” stuff,
great great my ps vita is vulnerable good thing i stayed on low firmware for kernel psp exploit,waiting now for the emu using ps vita power and maybe a cfw 😛
Yes I’m IN
usermode (OFW) or kernel (CFW) ?
There is a chance to create an easy way to change accounts on vita with this?
Soo I just got the vulnerable message, what do I do now to get an emulator or something running?
lol yeah…the guys working on this don’t intend to support piracy…yet leave the door wide open to it.
Who are you trying to fool? Anyone who works on hacking a console/handheld IS supporting piracy. Period.
Even if they really JUST want emulation of other consoles/handhelds or homebrew (which CAN lead to more piracy too), they KNOW that one of the consequences of hacking is piracy. So you only don’t support piracy by not hacking the hardware. There’s no other way around. They’re linked. One leads to the other. You’re not off the hook because you only want a piece of the hack. If you did the hack you’re held accountable for ALL it’s effects even if they’re not used by you or are used by someone else. Just man up and admit it, stop pretending you took the high road by not supporting the leeches. You didn’t.
People here actually support hacking and piracy, but they can’t publicly say about this, because “bad guys from police” are watching them.
You may be morally accountable to yourself, but that doesn’t mean other people should hold you responsible for others’ actions. It is “good” to spread knowledge, even if that knowledge can be used immorally. You should also recognize that people have to protect themselves legally, so a strong stance against piracy isn’t necessarily contradictory.
I’d like to interject for a moment.
Publishers often refer to copying they don’t approve of as “piracy." In this way, they imply that it is ethically equivalent to attacking ships on the high seas, kidnapping and murdering the people on them. Based on such propaganda, they have procured laws in most of the world to forbid copying in most (or sometimes all) circumstances. (They are still pressuring to make these prohibitions more complete.)
If you don’t believe that copying not approved by the publisher is just like kidnapping and murder, you might prefer not to use the word “piracy" to describe it. Neutral terms such as “unauthorized copying" (or “prohibited copying" for the situation where it is illegal) are available for use instead. Some of us might even prefer to use a positive term such as “sharing information with your neighbor."
A US judge, presiding over a trial for copyright infringement, recognized that “piracy" and “theft" are smear-words.
It may very well lead to piracy,but so what? Sony has abandoned the Vita, and so have Western developers, except for Indie games that you can get for $1 (if not less) on the PC and yet go for $10-15 on the Vita.
heck, if not for the hackers, I couldn’t even play most of my PSP games on the Vita. Even many of the ones I own on PSN won’t work because Sony can’t be bothered to officially support it.
I basically paid $250 for a paperweight. Maybe this will let me use it for something.
“Piracy” is a dirty word, rather we call them ” back ups”
My Vita stay in 3.15, and stay tuned for next project i can assume, buying old new ps vita can get fw 2.60 before price going high.
“(says the guy who just updated to 3.30 yesterday…)”
Oh, good, I feel a little better knowing that I’m not the only one that made that mistake, though I updated far sooner, before the webkit exploit was even found.
Sitting on a comfortable 2.60 kernel exploit from a game I bought BEFORE the exploit for it was released “that was a very nice surprise btw : D ” And actually and genuinely looking forward to some native vita homebrews to be honest. In the badass days there were psp competitions, I’d like to see that umph on the native vita for all us lucky chumps : )