출처 : http://www.twitlonger.com/show/kr81e0
정말 오랜만에 글을 써보는데 하필이면 좋은 소식은 아니네요....
2.05서는 기존 2.02에서 사용되었던 커널 익스플로잇이 패치되었다는 소식입니다.
Full kernel access until 2.02 :
0x354D5D6B [0x00010960] - sceWlanDrv_lib_354D5D6B ( char *dest ); // kwrite
0x0308B66B [0x00031078] - sceWlanDrv_lib_0308B66B (u32 unk0, char *destBuf, u32 *size, u32 *dest); // kwrite
0x2133EAA9 [0x00031080] - sceWlanDrv_lib_2133EAA9 (u32 unk0, char *bufDest, u32 *size); // kwrite
0x638DF9C8 [0x000310B0] - sceWlanDrv_lib_638DF9C8 ( u32 unk0, char
*dest, u32 *unk1); // kwrite : memcpy(dest, *(*0x00017A48 + 8),
**0x00017A48);
0xA77D0E66 [0x000310D8] - sceWlanDrv_lib_A77D0E66 ( u32 unk0, char *dest, char *buf, u32 *size); // kwrite
0xAE8D779A [0x000310E0] - sceWlanDrv_lib_AE8D779A ( u32 unk0, char
*src0, u32 size0, u32 unk1, char *src1, u32 size1, u32 *dest); // sw
smthg, 0(dest) : kwrite
0xB991A673 [0x000310E8] - sceWlanDrv_lib_B991A673 ( u32 unk0, void
*src_size, u32 limit, u32 unk1, char *src, u32 size, u32 *dest); // sw
smthg, 0(dest) : kwrite
0xD9EE3EEC [0x000310F8] - sceWlanDrv_lib_D9EE3EEC ( u32 unk0, u32 unk1, u32 unk2, char *dest, u32 *dest1); // kwrite
Readonly access until 2.02 :
0x9E00AA04 [0x000310D0] - sceWlanDrv_lib_9E00AA04 (u32 unk0, char *src, u32 size); // Setter Writes to 0x00017A48
0xCF1A87D8 [0x000310F0] - sceWlanDrv_lib_CF1A87D8 (u32 unk0, char
*src, u32 size); // Setter Writes to 0x00017A48
memcpy(*0x00017A48, src, size);
0xEAB4786D [0x00031100] - sceWlanDrv_lib_EAB4786D ( u32 unk0, u32
unk1, u32 unk2, char *src, u32 size); // Setter Writes to 0x00017A48
그래서인지 Frostegater가 2.02 CEF 및 커널 익스플로잇 소스를 공개했는지도 모르겠습니다.
http://wololo.net/2013/01/28/frostegater-makes-the-2-02-cef-and-kexploit-open-source/
|