Way to continue to fail Sony, EML hacks still alive in Vita FW 3.57!!!

atreyu187

atreyu187

Loathsome Dung Eater
Well seems EML hacks are patched as of 3.55 right? WRONG!! We just can't do it via the email app but we can still do this even on 3.57 with the calender app. Another epic failure on Sony's behalf.


Well its been nearly 4 months since when Sony "patched" the fail-mail tricks to dump and write to the Vita's filesystem but only short time after that, Major_Tom already published this tweet saying, at least, the dumping part does still work.

LMAO, I can dump files in 3.55

— Major_Tom (@frtomtomdu80) September 30, 2015

Sony was probably in a big hurry trying to fix everything as soon as possible and since we are talking about Sony they of course failed.. (kind of)

I thought they would change system apps permissions but the email app is still able to read/write to ux0, AND other partitions, that's for sure!

In the end, they didn't change the whole e-mail app permissions regarding accessing the Vita like Major_Tom predicted, no, they "just" patched the URI-calling used for the trick (email:send?attach=) in the mail-app. (Most like because they were in a hurry and wanted to stick to their planned firmware release schedule for 3.55 with this quick 'damage control' fix.)

Well we weren't quite sure (after the 3.57 update gone public and patched this last week) if we should publish the following method at all, but since today someone over at wololo's forum mentioned this as well, why not, right?! Although it was mentioned a couple of times before, we can easily use the Calendar app to call support_uri(s), let's hope Sony doesn't decide to finally patch this after all. Anyways here is..



How to dump files on firmware 3.55


1) Create a new calendar Event



2) Go to "Description" and write down the support uri with the file-link and save it

vita_calendar_desc



3) Select "Send by Email"

vita_calendar_send



4) Now this should look familiar to you and all you need to do is send back this mail to your mail account and retrieve the file.
Click to expand...
 
Tested and confirmed white list added using the calender app over the EML app. This means once the exploit is revealed ePSP bubbles are gonna be a piece of cake. Already announced and released for EU PSN Stores.
 
nice! there now seems to be a way to dump complete games/apps through the app.db and the memory card backup method. I have a memory card meant for just a function as it's empty. ;)
 
pinky said:
nice! there now seems to be a way to dump complete games/apps through the app.db and the memory card backup method. I have a memory card meant for just a function as it's empty. ;)
Click to expand...


Yea I tested that as well. Files aren't poisoned and the prxtool mod works on seller analyzing. From what I also understand the calendar app isn't the only one with uri flaws.
 
[MENTION=7]atreyu187[/MENTION] , I'm still having issues dumping the memory card. I've tried both the app.db and the pboot methods. the transfer from vita to pc is perfect, but transferring back is where the problem lies. it errors every time. depending on the game, the error will be at a different spot, but it'll always error in the same spot of the transfer for that game. it seems to be unstable. the only thing I can think of is that it has something to do with the qcma version. open cma doesn't work afaik.
 
pinky said:
[MENTION=7]atreyu187[/MENTION] , I'm still having issues dumping the memory card. I've tried both the app.db and the pboot methods. the transfer from vita to pc is perfect, but transferring back is where the problem lies. it errors every time. depending on the game, the error will be at a different spot, but it'll always error in the same spot of the transfer for that game. it seems to be unstable. the only thing I can think of is that it has something to do with the qcma version. open cma doesn't work afaik.
Click to expand...


Have you tried having a CMA for each? Like one just for Vita the other for PSTV since they are different firmware's.
 
atreyu187 said:
Have you tried having a CMA for each? Like one just for Vita the other for PSTV since they are different firmware's.
Click to expand...

the problem is that the memory cards r too full since I need twice the space to backup the card. I bought another memory card for that, but I'm still having issues with backing up the memory card. it fails whenever I transfer the content back. plus, whenever u remove the memory card and insert another, the database is updated removing some, if not all, app.db mods/hacks. for example, my theme is always removed whenever I do that. the pkg installer, remote play, custom whitelist 2, etc. may also be removed, but I never checked that. I've tried backing up small sections of the memory card which also failed on the transfer back. backing up the entire card works with both the pboot as well as the app.db hack, but it's always the transfer back to gain access to the content that fails. I'm not sure what the problem is.
 
sethreign said:
i bet they're gonna give up on the system entirely soon then someone will (hopefully) release any long kept exploit stuff then one more update to patch that :P
Click to expand...

there's a way to dump games, and I believe make them playable, but it's a major pain. there's a file called files.db which is a database of every game file along with several license files, all of which r in the same locations on each game cart. u can dump them all and install the game, but u can only dump one file at a time, so games with hundreds of files r a nightmare.
 
You can use tools out there to grab content with a "fake" PSN account, ReActPSN and a custom made CMA file with needed info to activate PSN contnet. That is as far as I can go with this as it is pure piracy which we don't support or help with but pinky is onto the right track as two DB files must be altered as well. It is difficult to achieve. And since there is no legal way of doing this as it can't ever come from an account the bought the content it stays hidden and the rigours process will deter 99% of all users anyhow. Just choke up the $10-$20 to help keep the system alive as Sony has given up on it we don't wo\ant to driver away the few teams that still actively develop for it.
 
yes, once u alter the db files, u can install the game's content via the bgdl (the vita's version of the package folder). I don't know how well it works, because I don't have the patience to dump a game although I've dumped several files. there r currently three dumping methods depending on the size of the file, but all three involve dumping one file at a time. u can imagine how tedious that is.
 
sorry guys, the post says "3.57" but i see your talking bout 3.55 right?
ended buying another vita, its a slim one but unfortunately(not really) its been updated. though i do enjoy playing BOIII from my work, but i do miss Gran tourismo and NFS along with many other psp greats.
 
You must log in or register to reply here.

Similar threads

Back
Top