PS3 Jailbreak Broken

   A software developer who goes by the name Mathieu Hervais has apparently hacked and dumped (copied) the contents of the Jailbreak USB dongle and released it as an open source project under the name "PSGroove." The exploit files are listed on Github under the psgroove subfolder. The zip file that's been released into filesharing networks contains five hexadecimal data files which can be programmed into the following Atmel AT90USB microcontrollers:

AT90USB162
AT90USB646

AT90USB647

AT90USB1286

AT90USB1287

ATMEGA32U4

   The microcontrollers plug into the USB port of a PC or console to retrieve on-board documentation and run AVR program code. Disane explains the code injection process below:

"This is the disassembled PPC code more like the shell code that is being injected. The best way would be to use the lv2 dump and this to figure out how the stack overflow exploit works in the USB buffer of the PS3 after that it can be reproduced on any FW. On both slim and fat PS3s.
The JIG ID is probably passed to trigger some code pathern which the Configuration Descriptor overflows and injects the shell code after that the code gets executed. The shell code patches lv2 to run fselfs and all kinds of interesting flags which I haven’t noticed yet…"

   Skimming over the message boards and IRC, there's obvious excitement brewing today over the possibility of low cost Jailbreak clones. One poster on a popular message board asked if he could burn the .hex files onto a disc and Jailbreak his PS3 that way.

   From the instructions that were released last night:

To use this exploit:
• Hard power cycle your PS3 (using the switch in back, or unplug it)
• Plug the dongle into your PS3.
• Press the PS3 power button, followed quickly by the eject button.
After a few seconds, the first LED on your dongle should light up. After about 5 seconds, the second LED will light up (or the LED will just go off, if you only have one). This means the exploit worked! You can see the new "Install Package Files" menu option in the game menu.

Notes

• A programmed dongle won't enumerate properly on a PC, so don't worry about that.

• This software is not intended to enable piracy, and such features have been disabled. This software is intended to allow the execution of unsigned third-party apps and games on the PS3.