Resistance: FoM Network Update Vulnerability

Category: PS3 Hacks & JailBreak  By: CJPC - (ps3news.com)
Tags: resistance network update exploit hole ps3 dev

276w ago - As you know, the Resistance: Fall of Man game updates via PlayStation Network. The resident PS3 Devs (Subdub and Gigi) discovered this nearly 6 months ago and others (Placa, to name just one) soon after, it's just another rehash of the old Warhawk method (detailed here and here), but more constrained.

For example, using the Warhawk hole users could change directories, in the R:FOM one you can't. In layman's terms, it means this R:FOM method is even more limited/useless than the Warhawk one was. Of course to those who just recently discovered it- this is being incorrectly labeled as something useful when it sadly isn't at all.

However, since Sony plugged the Warhawk hole in a past Firmware Update, most of the devs opted to keep quiet until tonight... as now this hole will certainly be addressed in an upcoming Firmware Update as it is indeed a security issue to Sony.

It's a fairly simple method. Using your favorite DNS "hijack" method, or proxy server redirect download-prod.online.scea.com to a HTTP server.

On the HTTP server, set up the path:
/client-patch/resistancegs-prod/resistancegs_SCEE/8.7.1.1/

So, http://download-prod.online.scea.com/client-
patch/resistancegs-prod/resistancegs_SCEE/8.7.1.1/ will be redirected to your HTTP server.

You will want to download the files from there to your HTTP server, and recreate the file directory. You can then begin to play around with the files.

http://download-prod.online.scea.com/client-patch/resistancegs-
prod/resistancegs_SCEE/8.7.1.1/manifest.dat

http://download-prod.online.scea.com/client-patch/resistancegs-
prod/resistancegs_SCEE/8.7.1.1/EBOOT.BIN

Note: You may need to change _SCEE to _SCEA, depending on your region.

You cant do much with this, you can replace some files, but since they're all encrypted and signed, its somewhat useless indeed!

In regards to the Manifest.dat, a hint:

0x00: 0x49470001 - marker
0x04: 0x0000000a - number of files
0x08: 32 bytes per patch file

And the patch files:

0x00: 64-bit length
0x08: 32-bit checksum? (unused)
0x0c: 20 bytes - zero terminated file name


Stay tuned for more PS3 Hacks and PS3 CFW news, follow us on Twitter and be sure to drop by the PS3 Hacks and PS3 Custom Firmware Forums for the latest PlayStation 3 scene updates and homebrew releases!

Comments 0 Comments - Go to Forum Thread »

Quick Reply Quick Reply

  • Decrease Size
    Increase Size
  • Wrap [QUOTE] tags around selected text

Related PS3 News and PS3 CFW Hacks or JailBreak Articles

Simple PS3Updates v1.6 Build 2 Final PS3 Homebrew App Updated
Video: Super Pixel Jumper v1.2 PS3 Homebrew Game is Released
Video: Pointman: The Akkadian Wars PS3 Homebrew Game Arrives
PSPMinis / PS3Minis / Bite v1.5.1 Update for PS3 is Now Released
PS3 Fan Control Utility v1.7 for PS3 CFW CEX 3.41 to 4.41 Arrives
PSPMinis / PS3Minis / Bite v1.5 for PS3 with PSP Homebrew Support
Affiliates  NewsNow  Privacy  PS3 CFW & MFW  PS3 Hacks & JailBreak  PS3 Reviews  PS3 Videos  © 2013 PlayStation 3 News

PlayStation 3 Links

Contact Us E-Mail
PS3 Affiliates
PS3 CFW & MFW
PS3 Debug Firmware
PS3 Decrypted PSN Links for CFW
PS3 Downloads
PS3 EBOOT.BIN Original File Links
PS3 Firmware
PS3 Game Releases List
PS3 Guides & Tutorials
PS3 Hacking Guides and Tutorials
PS3 Hacks & JailBreak
PS3 Help & Support
PS3 JailBreak Game Compatibility List
PS3 JB2 / True Blue (TB) Game Links
PS3 multiMAN Updates
PS3 News Forums
PS3 News Site FAQ
PS3 News Site Advertising FAQ
PS3 News Site Posting FAQ
PS3 News Site Privacy FAQ
PS3 News Site Rules
PS3 News Site Tag Cloud
PS3 News Site Terms
PS3 Resources
PS3 Reviews
PS3 Save Files Repository
PS3 Themes
PS3 Trophies List
PS3 Videos
PS Vita Trophies List

PlayStation 3 News Discussions
PS3 Fan Control Utility v0.3 for 4.31 and 4.40 CFW CEX is Released - 2h ago

Neo Cyrus's Avatar
Quote Am I doing something wrong or is it not functioning properly on Rebug Rex 4.30.2? I select the automatic payload and exit so then it goes to sleep. I ...
By Neo Cyrus with
 21 Comments »
Introductions: Hello Everyone, I'm New at PS3News.com! - 2h ago

Ek2112's Avatar
Quote Hello everyone I'm a n00b to ps3 and I like games a lot. I'm trying to learn how to fix DEX 2 CEX break,because I broke my ps3. That's all. You...
By Ek2112 with
 7007 Comments »
still too hot... - 3h ago

2tailedfox's Avatar
Quote ok. Another question then. Does it have to be glue? Can it be just more as5, or does glue actually have more conductivity to it? I'm also conside...
By 2tailedfox with
 2 Comments »
Fixing Tales of Graces F for PS3 CFW 3.55 - 3h ago

predprey's Avatar
Quote has been any progress on localising the JIS characters in the dlc. with the recently released trueancestor edat decryptor it should now be possible to...
By predprey with
 896 Comments »

Latest PlayStation 3 Trophies
 Call of Juarez: Gunslinger: Keep At It
 Call of Juarez: Gunslinger: True Story
 Call of Juarez: Gunslinger: Grows In The Telling
 Call of Juarez: Gunslinger: Turkey Shoot

Latest PlayStation Vita Trophies
 Men's Room Mayhem: Toilet Trouble
 Men's Room Mayhem: Mayhem Master
 Men's Room Mayhem: Hygiene Award
 Men's Room Mayhem: Sand in the Face

Latest PlayStation 3 Releases
Resident Evil Revelations PS3-ANTiDOTE - 05-19-2013
Muvluv Alternative Total Eclipse JPN PS3-HR - 05-17-2013
Skate 2 EUR PS3-Googlecus - 05-16-2013
The Walking Dead A Telltale Games Series PS3-COLLATERAL - 05-15-2013

Latest PlayStation 3 Themes
 Wolverine Origins PS3 Theme - 05-19-2013
 Heavy Rain (Official) Dynamic PS3 Theme - 05-09-2013
 Wipeout HD Fury Dynamic PS3 Theme - 05-06-2013
 Batman Arkham City Dynamic PS3 Theme - 05-04-2013