- The latest spark of hope for psp-3000 users!! Great job MaTiAz
for the find and +1 to Freeplay
for getting it to work on the newest PSP revision!!! From the original article:
Now this is how you start a new year! New exploit, old game! Damn, it's so cool to actually see this beauty working - and on a PSP-3000 no less! The PSP scene was buzzing the other day when MaTiAz found an exploit (read: buffer overflow!) in the three year old game, GripShift.
Download: GripShift PSP Savegame Exploit POC
/ GripShift PSP Savegame Exploit POC v2
We'll leave the technical bits for later. Now, we'll have this video from FreePlay do the talking:
Now then, the details: MaTiAz says that they've yet to find any further use for this, but it's still a new exploit. It could lead to further hacks, and for now, it's merely a proof of concept. Be that as it may, this is a great start, and a rather sweet find! Here's MaTiAz explaining the exploit:
GripShift has a buffer overflow vulnerability when loading savegames. The savegame contains the profile name which can be easily used to overwrite $ra. The savegame file is...