with PSVita 3.00 firmware update were apparently quite several exploits (include private ones too) patched, including the private exploit of mine I've been using since Everybody's Tennis was published and fixed.
Indeed Zer01ne used his Uno exploit until it got public, and lately decided to use mine too but unfortunately for him especially, he told me it's been patched on 3.00 !
dang Sony, they probably watched my crash logs / PSN game purchases who knows lol.
The game is Half-Minute Hero, available in EU / US / JPN PSNs, with exploit working until firmware 2.61, and vhbl too.
However I didn't update my VHBL for it since a long time, indeed I'm only using it to load eCFW since then.
To make this VHBL usable someone would need to merge it with the official VHBL latest changes, so that files respect the 8.3 CMA name convention and have uppercase file names. I have no time for this
jigsaw also found this exploit himself after me, and we also had an agreement to keep it private, but since Zer01ne verified it's not usable anymore on 3.00 it's no use not publishing it anymore.
VHBL info :
This VHBL uses a special GPU unlocking method using sceGeListUpdateStallAddr on the game's main qid, indeed without it the GPU won't draw on the screen somehow, making VRAM direct write working only (without this "fix" sceGeListSync and sceGeDrawSync never end to be precise).
Files :
- Binary loaders for EU / US / JPN games : they will load & execute the H.BIN file you put in their save folder
- VHBL r147 for EU game (to make compatible with new CMA 8.3 file format)
Coldbird is to thank for crafting the US / JPN exploit payloads though
Have fun
yosh
Nb :
- Provided European VHBL can't be transfered on >=1.80 fws via CMA unless someone updates it for 8.3 CMA compatibility, that's why only VHBL source code is provided
- US / JPN VHBL should be "easily" doable by basing on r147 EU version, but won't appear unless someone works on it
- According to hasu90 on wololo.net, there is also an NPJH50104 Japanese game in addition to the ULJS00195 one. NPJH50104's certainly compatible with the exploit but would require for someone to craft its exploit savedata
It seems the ULJS00195 Japanese game is the umd passport version and the NPJH50104 is the actual psn one imho, I'm not much aware of Japanese specificities
- The exploit itself is a bit tricky but mainly annoying to reproduce : SGDeemer doesn't work, so you always need to reencrypt saves
- Advantage : the game lets you have 5 different savefiles, so you can have for instance 4 different eCFW / VHBL (no eCFW provided here) and keep one for playing (that's what I do)
How to trigger the exploit : after loading the save, go to the Options menu.
Advertising
, thanks for release.
