Famous ex-psp hacker Davee released yesterday a proof of concept exploit for the PS Vita, running through the webkit browser. (and yes, you get to try it, hold on!)
Davee came back to life a few weeks ago, releasing a framework to help with the development of exploits on ARM CPUs, through RO programming based hacks. It wasn’t long before he announced this exploit.
Now here’s the catch: in its current form, the exploit only runs on Vita firmware 2.60. Davee stated that it should be easy enough to port to other firmwares (there are a few entry point addresses to update, it seems), but it is extremely likely that it is patched in firmware 3.30. I have no full confirmation of that (although I did test), but my gut feeling tells me Davee would not release “just” a proof of concept if there was a possibility this could still be used on the latest Vita firmware. Yifan Lu stated that this might actually be the same exploit found by other people independently, that had been confirmed to be patched after firmware 3.18.
This confirms once again that people waiting for an exploit should stay on lower fiwmares as much as possible (says the guy who just updated to 3.30 yesterday…).
Give it a try
On firmware 3.30, unless I messed up some of my copy/paste, the hack fails at the very first step, which isn’t firmware specific. This indicates that the exploit is indeed patched on 3.30. Feel free to give it a try in particular if you are on firmwares 3.18 or lower. We’ll have more details on the exploit very soon!
Update: many people are asking what the exploit should look like when it is “working”. The “full” proof of concept only works on 2.60, but on other firmwares, anything else than an error code is a good sign. For example, people on 3.18 and 3.20 report that the page stays there for a few seconds then reloads: this is a good sign.