Buffer Overflow Found in PSP Firmware v2.0

Doomstalk writes "PSP news site PSP Updates is reporting that a buffer overflow flaw has been found in PSP firmware v2.0's photo viewer. So far it's only been used to corrupt the menu display, but it holds great promise for running homebrew code on upgraded PSPs." From the article: "Thanks to the unknown author(s) for this great starting point to have homebrew on 2.0, all that is needed are coders to extend this knowledge for full homebrew usage on the v2.0 firmware. We cannot say when someone will step up to the plate and write the code for users to run homebrew on a 2.0 using this exploit, but we will definitely have our ears (and email boxes) open and be sure to let you know as soon as we do."

Exploit

[EnderWigginsXenocide]

When will the first PSP worm/virus be out in the wild?

Re:Exploit

[GoRK]

Don't you mean as soon as it could run windows?

why do people fawn over closed-source systems?

[Myself]

Why throw your money at Sony, who does their best via DRM and everything to keep you out, when open platforms like the Tapwave Zodiac invite developers in?

Of course, this "feed the hand that bites us" behavior among gamers has already forced the Zodiac off the market -- nobody was buying it.

Ditto XBox! Why do geeks, who should oppose every shred of DRM and proprietarism that the green thing embodies, go out and buy the thing only to turn it into a set-top linux box? Hello? You're throwing money AT the evil empire.

I understand there's a certain challenge to "owning" such a closed system. Fine, show Microsoft and Sony you're better than them. But at the end of the day, all this activity does is encourage MORE of exactly the wrong behavior on the megacorps' part.

Re:why do people fawn over closed-source systems?

[KillShill]

actually tapwave is just a kinder gentler sony.

they still require signing but are more likely (relative to sony) to grant you "authorization" (don't you just like how in the modern world you need permission to access your own property?)

so the tapwave isn't a good example.

a good example would be something like the gamepark32 (and it's newer brother). there's no "signing" required or supported on the hardware.

and may i say that " Why throw your money at Sony, who does their best via DRM and everything to keep you out" is an EXCELLENT idea.

stop supporting DRM and Insidious Computing with your hard earned dollars (drachmas, lira or pesos etc.).

starve them to death financially.

they DON'T recognize any other type of protest.

if i had my own country, i wouldn't let merchants lock customers out of their own property but then again, sane people never get into any positions of power. (lest they offend monied interests).

Re:1.5 Owner

[grumbel]

### but Sony, please, please, just let us run our homebrew apps.

ACK, especially since the piracy argument is pretty much void, I mean a 1GB memory stick costs around 100EUR, I can get two original games for that price and it might not even enough to hold a single complete game. So to make it work you either need to limit yourself to those games that don't use much diskspace or cutout the cutscenes and other space consuming stuff. So piracy might still be there, but its really far less attractive then say for the PS1 where a 20cent CDR will do for a complete game, so I can hardly see how it should be a big problem on the larger scale.