Advertising (This ad goes away for registered users. You can Login or Register)

one UserMode exploit in game,But new crash has been found

Forum rules
Forum rule Nº 15 is strictly enforced in this subforum.
zanglsl
Posts: 36
Joined: Fri Jul 08, 2011 12:54 pm

one UserMode exploit in game,But new crash has been found

Post by zanglsl »

I have one UserMode exploit in game,and no patch in PSV 2.01.

Image

But a new crash has been found. Is this a useful exploit?

Code: Select all

Exception - Address load/inst fetch
Thread ID - 
Th Name   - 
Module ID - 
Mod Name  - 
EPC       - 0x08806740
Cause     - 0x10000010
BadVAddr  - 0x7A7A7D7A
Status    - 0x20088613
zr:0x00000000 at:0xDEADBEEF v0:0xFFFFFFFF v1:0x00000000
a0:0x7A7A7A7A a1:0x09FBF9C0 a2:0x00000054 a3:0x00000039
t0:0x00000220 t1:0xFFFFFFFF t2:0x00000000 t3:0x00000000
t4:0x4892BB70 t5:0x00FFFFFF t6:0x08AC0000 t7:0x56000000
s0:0x00000220 s1:0x7A7A7A7A s2:0x00000054 s3:0x09FBF9C0
s4:0x00000039 s5:0x7A7A7A7A s6:0x09FBF9C0 s7:0x08920000
t8:0x4892BB68 t9:0xDEADBEEF k0:0x09FBFB00 k1:0x00000000
gp:0x08920B30 sp:0x09FBF970 fp:0x00000004 ra:0x088095F0
0x08806740: 0x8E220300 '..".' - lw         $v0, 768($s1)
host0:/> disasm $epc-150 150

Code: Select all

0x088066A8: 0xACC20000 '....' - sw         $v0, 0($a2)
0x088066AC: 0x00041180 '....' - sll        $v0, $a0, 6
0x088066B0: 0x90E40002 '....' - lbu        $a0, 2($a3)
0x088066B4: 0x00431021 '!.C.' - addu       $v0, $v0, $v1
0x088066B8: 0x00021180 '....' - sll        $v0, $v0, 6
0x088066BC: 0x90E30003 '....' - lbu        $v1, 3($a3)
0x088066C0: 0x00441021 '!.D.' - addu       $v0, $v0, $a0
0x088066C4: 0x00021180 '....' - sll        $v0, $v0, 6
0x088066C8: 0x00431021 '!.C.' - addu       $v0, $v0, $v1
0x088066CC: 0x90E50004 '....' - lbu        $a1, 4($a3)
0x088066D0: 0x3C03FC10 '...<' - lui        $v1, 0xFC10
0x088066D4: 0x00431021 '!.C.' - addu       $v0, $v0, $v1
0x088066D8: 0x90E40005 '....' - lbu        $a0, 5($a3)
0x088066DC: 0x00021180 '....' - sll        $v0, $v0, 6
0x088066E0: 0x00451021 '!.E.' - addu       $v0, $v0, $a1
0x088066E4: 0x00021180 '....' - sll        $v0, $v0, 6
0x088066E8: 0x3C037DF7 '.}.<' - lui        $v1, 0x7DF7
0x088066EC: 0x00441021 '!.D.' - addu       $v0, $v0, $a0
0x088066F0: 0x3463DF80 '..c4' - ori        $v1, $v1, 0xDF80
0x088066F4: 0x00432021 '! C.' - addu       $a0, $v0, $v1
host0:/>
0x088066FC: 0x2442FFFF '..B$' - addiu      $v0, $v0, -1
0x08806700: 0x00804021 '!@..' - move       $t0, $a0
0x08806704: 0x0A20196F 'o. .' - j          0x088065BC
0x08806708: 0xACC20000 '....' - sw         $v0, 0($a2)
0x0880670C: 0x27BDFFD0 '...'' - addiu      $sp, $sp, -48
0x08806710: 0x2402FFFF '...$' - li         $v0, -1
0x08806714: 0xAFB3001C '....' - sw         $s3, 28($sp)
0x08806718: 0x00A09821 '!...' - move       $s3, $a1
0x0880671C: 0xAFB20018 '....' - sw         $s2, 24($sp)
0x08806720: 0x00C09021 '!...' - move       $s2, $a2
0x08806724: 0xAFB10014 '....' - sw         $s1, 20($sp)
0x08806728: 0x00808821 '!...' - move       $s1, $a0
0x0880672C: 0xAFBF0028 '(...' - sw         $ra, 40($sp)
0x08806730: 0xAFB50024 '$...' - sw         $s5, 36($sp)
0x08806734: 0xAFB40020 ' ...' - sw         $s4, 32($sp)
0x08806738: 0x10C200F5 '....' - beq        $a2, $v0, 0x08806B10
0x0880673C: 0xAFB00010 '....' - sw         $s0, 16($sp)
0x08806740: 0x8E220300 '..".' - lw         $v0, 768($s1)
0x08806744: 0x2442FFA9 '..B$' - addiu      $v0, $v0, -87
0x08806748: 0x2C420005 '..B,' - sltiu      $v0, $v0, 5
0x0880674C: 0x10400018 '..@.' - beqz       $v0, 0x088067B0
0x08806750: 0x00000000 '....' - nop
0x08806754: 0xAFA00000 '....' - sw         $zr, 0($sp)
0x08806758: 0x1E4000BA '..@.' - bgtz       $s2, 0x08806A44
0x0880675C: 0x44801000 '...D' - mtc1       $zr, $fcr2
0x08806760: 0xC62102F4 '..!.' - lwc1       $fpr01, 756($s1)
0x08806764: 0x3C020891 '...<' - lui        $v0, 0x891
0x08806768: 0x8FBF0028 '(...' - lw         $ra, 40($sp)
0x0880676C: 0x46800820 ' ..F' - cvt.s.w    $fpr00, $fpr01
0x08806770: 0xC44138DC '.8A.' - lwc1       $fpr01, 14556($v0)
0x08806774: 0x3C020891 '...<' - lui        $v0, 0x891
0x08806778: 0x8FB50024 '$...' - lw         $s5, 36($sp)
0x0880677C: 0x46010002 '...F' - mul.s      $fpr00, $fpr00, $fpr01
0x08806780: 0xC44138E0 '.8A.' - lwc1       $fpr01, 14560($v0)
0x08806784: 0x8FB40020 ' ...' - lw         $s4, 32($sp)
0x08806788: 0x8FB3001C '....' - lw         $s3, 28($sp)
0x0880678C: 0x46020002 '...F' - mul.s      $fpr00, $fpr00, $fpr02
0x08806790: 0x8FB20018 '....' - lw         $s2, 24($sp)
0x08806794: 0x8FB10014 '....' - lw         $s1, 20($sp)
0x08806798: 0x8FB00010 '....' - lw         $s0, 16($sp)
0x0880679C: 0x46010002 '...F' - mul.s      $fpr00, $fpr00, $fpr01
0x088067A0: 0x27BD0030 '0..'' - addiu      $sp, $sp, 48
0x088067A4: 0x4600000D '...F' - trunc.w.s  $fpr00, $fpr00
0x088067A8: 0x03E00008 '....' - jr         $ra
0x088067AC: 0x44020000 '...D' - mfc1       $v0, $fcr0
0x088067B0: 0x1A40FFEB '..@.' - blez       $s2, 0x08806760
0x088067B4: 0x44801000 '...D' - mtc1       $zr, $fcr2
0x088067B8: 0x0000A021 '!...' - move       $s4, $zr
0x088067BC: 0x00008021 '!...' - move       $s0, $zr
0x088067C0: 0x0A201A0D '.. .' - j          0x08806834
0x088067C4: 0x3C150892 '...<' - lui        $s5, 0x892
0x088067C8: 0x240200C2 '...$' - li         $v0, 194
0x088067CC: 0x10A20067 'g...' - beq        $a1, $v0, 0x0880696C
0x088067D0: 0x240200C3 '...$' - li         $v0, 195
0x088067D4: 0x10A20070 'p...' - beq        $a1, $v0, 0x08806998
0x088067D8: 0x240200E2 '...$' - li         $v0, 226
0x088067DC: 0x50A20094 '...P' - beql       $a1, $v0, 0x08806A30
0x088067E0: 0x26050002 '...&' - addiu      $a1, $s0, 2
0x088067E4: 0x24020024 '$..$' - li         $v0, 36
0x088067E8: 0x10C20025 '%...' - beq        $a2, $v0, 0x08806880
0x088067EC: 0x3C020891 '...<' - lui        $v0, 0x891
0x088067F0: 0x2402007E '~..$' - li         $v0, 126
0x088067F4: 0x10C2006E 'n...' - beq        $a2, $v0, 0x088069B0
0x088067F8: 0x2402005E '^..$' - li         $v0, 94
0x088067FC: 0x10C2007C '|...' - beq        $a2, $v0, 0x088069F0
0x08806800: 0x2402007B '{..$' - li         $v0, 123
0x08806804: 0x10C2005F '_...' - beq        $a2, $v0, 0x08806984
0x08806808: 0x3C020892 '...<' - lui        $v0, 0x892
0x0880680C: 0x0E201856 'V. .' - jal        0x08806158
0x08806810: 0x02202021 '!  .' - move       $a0, $s1
0x08806814: 0x00402821 '!(@.' - move       $a1, $v0
0x08806818: 0x0E2012B0 '.. .' - jal        0x08804AC0
0x0880681C: 0x02202021 '!  .' - move       $a0, $s1
0x08806820: 0x0282A021 '!...' - addu       $s4, $s4, $v0
0x08806824: 0x26100001 '...&' - addiu      $s0, $s0, 1
0x08806828: 0x0212102A '*...' - slt        $v0, $s0, $s2
0x0880682C: 0x10400027 ''.@.' - beqz       $v0, 0x088068CC
0x08806830: 0x44940000 '...D' - mtc1       $s4, $fcr0
0x08806834: 0x02132021 '! ..' - addu       $a0, $s0, $s3
0x08806838: 0x80860000 '....' - lb         $a2, 0($a0)
0x0880683C: 0x92A28B6C 'l...' - lbu        $v0, -29844($s5)
0x08806840: 0x3C070892 '...<' - lui        $a3, 0x892
0x08806844: 0x1040FFE0 '..@.' - beqz       $v0, 0x088067C8
0x08806848: 0x30C500FF '...0' - andi       $a1, $a2, 0xFF
0x0880684C: 0x3C080892 '...<' - lui        $t0, 0x892
0x08806850: 0x8D038B68 'h...' - lw         $v1, -29848($t0)
0x08806854: 0x24020002 '...$' - li         $v0, 2
0x08806858: 0x1062003B ';.b.' - beq        $v1, $v0, 0x08806948
0x0880685C: 0xA0E08B6C 'l...' - sb         $zr, -29844($a3)
0x08806860: 0x24020003 '...$' - li         $v0, 3
0x08806864: 0x1062002E '..b.' - beq        $v1, $v0, 0x08806920
0x08806868: 0x24A3FF80 '...$' - addiu      $v1, $a1, -128
0x0880686C: 0xAD008B68 'h...' - sw         $zr, -29848($t0)
0x08806870: 0x24020024 '$..$' - li         $v0, 36
0x08806874: 0x14C2FFDF '....' - bne        $a2, $v0, 0x088067F4
0x08806878: 0x2402007E '~..$' - li         $v0, 126
0x0880687C: 0x3C020891 '...<' - lui        $v0, 0x891
0x08806880: 0x8C437A48 'HzC.' - lw         $v1, 31304($v0)
0x08806884: 0x3C020890 '...<' - lui        $v0, 0x890
0x08806888: 0x24420980 '..B$' - addiu      $v0, $v0, 2432
0x0880688C: 0x00031880 '....' - sll        $v1, $v1, 2
0x08806890: 0x00621821 '!.b.' - addu       $v1, $v1, $v0
0x08806894: 0x8C650000 '..e.' - lw         $a1, 0($v1)
0x08806898: 0x3C020892 '...<' - lui        $v0, 0x892
0x0880689C: 0x24428B78 'x.B$' - addiu      $v0, $v0, -29832
0x088068A0: 0x00052880 '.(..' - sll        $a1, $a1, 2
0x088068A4: 0x00A22821 '!(..' - addu       $a1, $a1, $v0
0x088068A8: 0x8CA40000 '....' - lw         $a0, 0($a1)
0x088068AC: 0x24050001 '...$' - li         $a1, 1
0x088068B0: 0x0E2012B0 '.. .' - jal        0x08804AC0
0x088068B4: 0x26100001 '...&' - addiu      $s0, $s0, 1
0x088068B8: 0x0282A021 '!...' - addu       $s4, $s4, $v0
0x088068BC: 0x0212102A '*...' - slt        $v0, $s0, $s2
0x088068C0: 0x1440FFDD '..@.' - bnez       $v0, 0x08806838
0x088068C4: 0x02132021 '! ..' - addu       $a0, $s0, $s3
0x088068C8: 0x44940000 '...D' - mtc1       $s4, $fcr0
0x088068CC: 0xC62102F4 '..!.' - lwc1       $fpr01, 756($s1)
0x088068D0: 0x3C020891 '...<' - lui        $v0, 0x891
0x088068D4: 0x468000A0 '...F' - cvt.s.w    $fpr02, $fpr00
0x088068D8: 0x46800820 ' ..F' - cvt.s.w    $fpr00, $fpr01
0x088068DC: 0xC44138DC '.8A.' - lwc1       $fpr01, 14556($v0)
0x088068E0: 0x3C020891 '...<' - lui        $v0, 0x891
0x088068E4: 0x8FBF0028 '(...' - lw         $ra, 40($sp)
0x088068E8: 0x46010002 '...F' - mul.s      $fpr00, $fpr00, $fpr01
0x088068EC: 0xC44138E0 '.8A.' - lwc1       $fpr01, 14560($v0)
0x088068F0: 0x8FB50024 '$...' - lw         $s5, 36($sp)
0x088068F4: 0x8FB40020 ' ...' - lw         $s4, 32($sp)
0x088068F8: 0x46020002 '...F' - mul.s      $fpr00, $fpr00, $fpr02
0x088068FC: 0x8FB3001C '....' - lw         $s3, 28($sp)
Advertising
arjunsm
Posts: 26
Joined: Tue Dec 11, 2012 6:50 pm

Re: one UserMode exploit in game,But new crash has been foun

Post by arjunsm »

I think of not. Because you have no control over the $SP or $ra.
Advertising
tomtomdu80
Buffer Overflow
Posts: 113
Joined: Tue Nov 20, 2012 6:39 pm
Location: France

Re: one UserMode exploit in game,But new crash has been foun

Post by tomtomdu80 »

it seems to be not exploitable, sorry
fidelcastro
Posts: 215
Joined: Sat Oct 02, 2010 1:34 pm

Re: one UserMode exploit in game,But new crash has been foun

Post by fidelcastro »

arjunsm wrote:I think of not. Because you have no control over the $SP or $ra.
and since when exploitation occurs only in sp or sra
tomtomdu80 wrote:it seems to be not exploitable, sorry
can define me his statement on this
Temik007
Banned
Posts: 82
Joined: Sun Jul 15, 2012 5:53 pm

Re: one UserMode exploit in game,But new crash has been foun

Post by Temik007 »

Photo with "helloworld" is fake, because it's askance :?
zanglsl
Posts: 36
Joined: Fri Jul 08, 2011 12:54 pm

Re: one UserMode exploit in game,But new crash has been foun

Post by zanglsl »

Temik007 wrote:Photo with "helloworld" is fake, because it's askance :?

Sorry ,because this game Exploit got from the friend , so I can not give detailed information.
brethren
Posts: 17
Joined: Tue Aug 09, 2011 7:40 pm

Re: one UserMode exploit in game,But new crash has been foun

Post by brethren »

Temik007 wrote:Photo with "helloworld" is fake, because it's askance :?
after looking at the provided picture, you're absolutely right. what kind of moron spends his time faking savegame exploits

look at the positioning of the 'hello world' text, lol
qraze
Posts: 52
Joined: Sun Dec 16, 2012 4:25 pm

Re: one UserMode exploit in game,But new crash has been foun

Post by qraze »

haha, someones busted.
white vita, psn ¡d Qraze.
zanglsl
Posts: 36
Joined: Fri Jul 08, 2011 12:54 pm

Re: one UserMode exploit in game,But new crash has been foun

Post by zanglsl »

brethren wrote:
Temik007 wrote:Photo with "helloworld" is fake, because it's askance :?
after looking at the provided picture, you're absolutely right. what kind of moron spends his time faking savegame exploits

look at the positioning of the 'hello world' text, lol
It is the usermode Exploit.

Code: Select all

Exception - Reserved instruction
Thread ID - 
Th Name   - 
EPC       - 0x08D8C400
Cause     - 0x10000028
BadVAddr  - 0xB7FFECFE
Status    - 0x20088613
zr:0x00000000 at:0xDEADBEEF v0:0x00000000 v1:0x00000001
a0:0x08D20000 a1:0xDEADBEEF a2:0xDEADBEEF a3:0xDEADBEEF
t0:0xDEADBEEF t1:0xDEADBEEF t2:0xDEADBEEF t3:0xDEADBEEF
t4:0xDEADBEEF t5:0xDEADBEEF t6:0xDEADBEEF t7:0xDEADBEEF
s0:0x80010002 s1:0x7A7A7A7A s2:0x7A7A7A7A s3:0x7A7A7A7A
s4:0x7A7A7A7A s5:0x7A7A7A7A s6:0x7A7A7A7A s7:0x7A7A7A7A
t8:0xDEADBEEF t9:0xDEADBEEF k0:0x09FBFB00 k1:0x00000000
gp:0x08920B30 sp:0x09FBFA20 fp:0x7A7A7A7A ra:0x089272D8
0x08D8C400: 0x04FA9843 'C...' - Unknown
disasm $epc-150 150
0x08D8C368: 0x00000000 '....' - nop
0x08D8C36C: 0x00000000 '....' - nop
0x08D8C370: 0x00000000 '....' - nop
0x08D8C374: 0x00000000 '....' - nop
0x08D8C378: 0x00000000 '....' - nop
0x08D8C37C: 0x00000000 '....' - nop
0x08D8C380: 0x00000000 '....' - nop
0x08D8C384: 0x00000000 '....' - nop
0x08D8C388: 0x00000000 '....' - nop
0x08D8C38C: 0x00000000 '....' - nop
0x08D8C390: 0x00000000 '....' - nop
0x08D8C394: 0x00000000 '....' - nop
0x08D8C398: 0x00000000 '....' - nop
0x08D8C39C: 0x00000000 '....' - nop
0x08D8C3A0: 0x00000000 '....' - nop
0x08D8C3A4: 0x00000000 '....' - nop
0x08D8C3A8: 0x00000000 '....' - nop
0x08D8C3AC: 0x00000000 '....' - nop
0x08D8C3B0: 0x00000000 '....' - nop
0x08D8C3B4: 0x00000000 '....' - nop
0x08D8C3B8: 0x00000000 '....' - nop
0x08D8C3BC: 0x00000000 '....' - nop
0x08D8C3C0: 0x00000000 '....' - nop
0x08D8C3C4: 0x00000000 '....' - nop
0x08D8C3C8: 0x00000000 '....' - nop
0x08D8C3CC: 0x00000000 '....' - nop
0x08D8C3D0: 0x00000000 '....' - nop
0x08D8C3D4: 0x00000000 '....' - nop
0x08D8C3D8: 0x00000000 '....' - nop
0x08D8C3DC: 0x00000000 '....' - nop
0x08D8C3E0: 0x00000000 '....' - nop
0x08D8C3E4: 0x00000000 '....' - nop
0x08D8C3E8: 0x00000000 '....' - nop
0x08D8C3EC: 0x00000000 '....' - nop
0x08D8C3F0: 0x00000000 '....' - nop
0x08D8C3F4: 0x00000000 '....' - nop
0x08D8C3F8: 0x00000000 '....' - nop
0x08D8C3FC: 0x00000000 '....' - nop
0x08D8C400: 0x04FA9843 'C...' - Unknown
0x08D8C404: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C408: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C40C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C410: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C414: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C418: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C41C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C420: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C424: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C428: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C42C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C430: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C434: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C438: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C43C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C440: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C444: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C448: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C44C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C450: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C454: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C458: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C45C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C460: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C464: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C468: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C46C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C470: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C474: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C478: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C47C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C480: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C484: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C488: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C48C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C490: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C494: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C498: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C49C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4A0: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4A4: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4A8: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4AC: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4B0: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4B4: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4B8: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4BC: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4C0: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4C4: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4C8: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4CC: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4D0: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4D4: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4D8: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4DC: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4E0: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4E4: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4E8: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4EC: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4F0: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4F4: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4F8: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C4FC: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C500: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C504: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C508: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C50C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C510: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C514: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C518: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C51C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C520: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C524: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C528: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C52C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C530: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C534: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C538: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C53C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C540: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C544: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C548: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C54C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C550: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C554: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C558: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C55C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C560: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C564: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C568: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C56C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C570: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C574: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C578: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C57C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C580: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C584: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C588: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C58C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C590: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C594: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C598: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C59C: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C5A0: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C5A4: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C5A8: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C5AC: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C5B0: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C5B4: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C5B8: 0xFFFFFFFF '....' - vsync      0xFFFF
0x08D8C5BC: 0xFFFFFFFF '....' - vsync      0xFFFF
zanglsl
Posts: 36
Joined: Fri Jul 08, 2011 12:54 pm

Re: one UserMode exploit in game,But new crash has been foun

Post by zanglsl »

brethren wrote:
Temik007 wrote:Photo with "helloworld" is fake, because it's askance :?
after looking at the provided picture, you're absolutely right. what kind of moron spends his time faking savegame exploits

look at the positioning of the 'hello world' text, lol
the positioning of the 'hello world' text reason:

Image

Image
Post Reply

Return to “Programming and Security”