PS3 PPPwn?

[Nakamichi]

The vulnerability PPPwn is based on is 18 years old, so i was thinking if this could also affect the PS3?
Could this be used to finally fully hack the late model PS3 SuperSlims with full CFW?

https://wololo.net/2024/02/01/is-an-18-year-old-vulnerability-the-key-to-the-next-ps5-ps4-jailbreak/

https://wololo.net/2024/05/01/ps4-t...-kernel-exploit-jailbreak-for-firmware-11-00/

 

[robokingscosmos]

No there's only one way to beat Metldr2 and there is one guy who is gonna DPA a superslim eMMC retail unit
Everything is locked away inside Lv0 since 3.60+ so the chain of trust has not been defeated and so far we only got as far as getting a Superslim with a factory fault tested on hackable units.

 

[LPpiton]

No there's only one way to beat Metldr2 and there is one guy who is gonna DPA a superslim eMMC retail unit
Everything is locked away inside Lv0 since 3.60+ so the chain of trust has not been defeated and so far we only got as far as getting a Superslim with a factory fault tested on hackable units.

what is it DPA and factory fault in superslim?

 

[zfreeman]

what is it DPA and factory fault in superslim?

I'm a layman as well, but it sounds like they're using Differential Power Analysis (DPA) to physically "disassemble" the encryption procedure, and eventually decrypt part of Superslim's bootchain, Metldr2. Decrypting Metldr2 will allow breaking through the other security levels using a set of commands (bootstrap?) to gain Return-Oriented Programming (ROP) code execution (e.g., Fusée Gelée exploit on Switch), or maybe overwrite it, if it's stored in writeable memory.

https://www.psx-place.com/threads/meltdr2-decryption.31497/

https://www.psx-place.com/threads/wait-why-cant-we-jailbreak-3000-systems.18778/page-2