26w ago - Following up on his TrueAncestor PKG Creator v1.0, PlayStation 3 homebrew developer JjKkYu has now updated his SCETool Script to PS3 TrueAncestor EBOOT Resigner v1.5 followed by v1.51 with the changes below.
1. Support resign EBOOT compitable for all CFW.
2. Merge 3.55/3.41 option with 4.XX option.
Now you can make a homebrew for all CFW (3.41/3.55/4.XX) usage.
PS3 TrueAncestor EBOOT Resigner v1.51 update:
1. Fix script logic error in option 3.
Stay tuned for more PS3 Hacks and PS3 CFW news, follow us on Twitter and be sure to drop by the PS3 Hacks and PS3 Custom Firmware Forums for the latest PlayStation 3 scene updates and homebrew releases!
basically a payload like the one used in the 3.41 jailbreak (hermes) is loaded into stack overflow when the ps3 tries to read this the payload is loaded into memory and you get unsigned code execution. but the problem is that ps3 is using the stack and it copies something to it instead of reading first.
so the payload which has been loaded there is being over written before it has been read and is deleted so if you could somehow make the ps3 read from stack or load the payload just before the stack gets read the payload would be loaded and you have a new jailbreak.
Generally, assuming that there is already a user mode exploit (think an exploit in a game), using this exploit will allow you to elevate permission to kernel level. The simplest way to think about it is the PSP exploits, and how multiple exploits were needed. Generally, of course!