MoHH 2 vulnerable to exploit?

ab5000 · Post by **ab5000** » Thu Sep 17, 2009 5:16 am

Hi.
As you know, MoHH is vulnerable to an exploit.

Yesterday i decrypted all the user modules of the 6.00 OFW.
I took a look at /vsh/module/savedata_utility.prx. In this file there are all the IDs of games vulnerable to exploits, so the savedata for this games will be checked.

Here's the list:

ULUS10041 - GTA:LCS (US)
ULES00151 - GTA:LCS (EUR)
ULES00182 - GTA:LCS (DE)
ULJS00005 - Lumines (JAP)
ULUS10002 - Lumines (US)
ULES00043 - Lumines (EUR)
ULKS46005 - Lumines (KOR)
ULJM05089 - Gripshift (JAP)
ULUS10040 - Gripshift (US)
ULES00177 - Gripshift (EUR)
ULKS46040 - Gripshift (KOR)
ULJM05097 - Pursuit Force - Daitsuiseki (JAP)
UCUS98640 - Pursuit Force (US)
UCES00019 - Pursuit Force (EUR)
UCKS45016 - Pursuit Force (KOR)
UCUS98703 - Pursuit Force - Extreme Justice (US)
UCES00694 - Pursuit Force - Extreme Justice (EUR)
UCAS40150 - Pursuit Force - Extreme Justice (UK)
ULUS10141 - Medal of Honor: Heroes (US)
ULJM05213 - Medal of Honor: Heroes (JAP)
ULAS42082 - Medal of Honor: Heroes (UK)
ULKS46066 - Medal of Honor: Heroes (KOR)
ULES00557 - Medal of Honor: Heroes (EUR)
ULES00558 - Medal of Honor: Heroes (FR)
ULES00559 - Medal of Honor: Heroes (DE)
ULES00560 - Medal of Honor: Heroes (EUR Platinum)
ULES00561 - Medal of Honor: Heroes (SP)
ULES00562 - Medal of Honor: Heroes (DE)
ULUS10310 - Medal of Honor: Heroes 2 (US)
ULJM05301 - Medal of Honor: Heroes 2 (JAP)
ULES00955 - Medal of Honor: Heroes 2 (UK)
ULES00988 - Medal of Honor: Heroes 2 (EUR)
ULES00956 - Medal of Honor: Heroes 2 (FR)

You can see GTA:LCS, Lumines, Gripshift and MoHH.

But, hey! There's also MoHH 2!
I think this means also MoHH 2 is vulnerable to exploit... This will be good cause 2 exploits working until 5.55 are a very good thing.

What do you think?

Bye,
ab5000.

Viper8896 · Post by **Viper8896** » Fri Sep 18, 2009 3:38 pm

So this is where the whole cat and mouse game has gone. Sony wants signatures of the saves to be checked to make sure it is nothing but a plain save. Surely this isn't sustainable if the list becomes too big. And what about false positives when a save really is nothing but a save.

slasher2661996 · Post by **slasher2661996** » Fri Sep 18, 2009 4:12 pm

might have thought that cause MoH had an exploit, MoH 2 had one as well?

dridri · Post by **dridri** » Fri Sep 18, 2009 8:40 pm

It's an interesting list, but why Sony did this ?
More the time passes more I believe that Sony wants that we made exploits, they give to us the 'exploitable' games !

But how to make an exploit ? Is there any program in the savedata ?

m0skit0 · Post by **m0skit0** » Fri Sep 18, 2009 8:49 pm

dridri wrote:More the time passes more I believe that Sony wants that we made exploits, they give to us the 'exploitable' games !

Sony don't give you exploitable games. Games are coded by their developers, not by Sony :P

dridri wrote:But how to make an exploit ? Is there any program in the savedata ?

Each vulnerability type yields a different exploit code, so there are no specific rules for writing exploits.

Anyway, the list you see above is just for Sony to patch game exploits, as they can't patch them in the game for two reasons:

1) They don't have the code, and it's unlikely devs will open it to SCE.
2) How will you patch already sold games in UMD?

So they just ban savedatas that contain the exploit for given games.

dridri · Post by **dridri** » Fri Sep 18, 2009 8:58 pm

Hum....
I dont have this UMD, is it possible to use the DEMO ?

m0skit0 · Post by **m0skit0** » Fri Sep 18, 2009 9:37 pm

Demo doesnt have multiplayer support where the vulnerability lays.

ab5000 · Post by **ab5000** » Sat Sep 19, 2009 2:19 am

BTW, remember this: MoHH 2 probably is exploitable (otherwise why is it in the list?) but this doesn't mean the exploit is the same as MoHH...

moonblood · Post by **moonblood** » Sat Oct 17, 2009 4:03 am

For all who dont to know how to find an exploit and with wich tools, I recommend this little guide from wololo