PS4 Jailbreaker Qwertyoruiopz Confirms 4.50 Kernel Read / Write Access!

Last week PlayStation 4 developer qwertyoruiopz made available a JailbreakMe PS4 4.0x Webkit exploit for OFW 3.55 through 4.07, and over this weekend he received an invite from the Rebug Team while sharing progress updates leading to confirmation of a 0day 4.50 kernel exploit obtaining R/W (Read / Write) access!

His latest JailbreakMe PS4 4.0x (Mirror via @X41) update states the exploit supports all non-4.50 Firmware, but specifically targets 4.06 currently due to ROP gadgets being hardcoded.

To recap, those on PS4 1.76 Firmware were able to make use of the Kernel Exploit Source Code that progressed to a PS4 BadIRET PoC finally leading to the 1.76 PS4 Dlclose Exploit.

For those on PS4 Firmware 4.07 or below you can use the JailbreakMe PS4 4.0x Exploit to gain userland access, and users on System Software 4.50 can rest assured a 0day 4.50 kernel exploit also exists although there is no user-level entry point for 4.50 OFW reported publicly as of yet.

Also keep in mind PlayStation 4 scene developers may decide to hold off disclosing the 0day PS4 4.50 kernel exploit much like the PS4 Pro 0day Exploit that was confirmed by Mathieulh until Sony patches it, so for the moment as usual the safest bet may be holding off making any System Software updates.

Finally keep an eye on the PS4 Dev Working Exploits page for an updated listing of PlayStation 4 WebKit / Userland and Kernel Exploits.

Thanks to @DoxyMarket, @hyndrid, @joona70, @mcmrc1, @Plankton, @sealab, @vettegast, @X41 and @xxmcvapourxx for the tips in the PSXHAX Shoutbox!

 

[klambo]

if team rebug are involved we should see a CFW thats if he gives them the kernel exploit, hopefully he follows in the line of geohot but remember what he went through, but then again Sony are a bunch of dicks took away other OS in the ps3 and now a new/same PS4 with boost mode ?

making everyone buy the SAME console again but maybe he will contact Sony there might be a big reward involved

then again maybe the good old days are gone forever think i will buy the xbox scorpio when it comes out and forget about the whole scene

long live Geohot!

ps: it would be a shame if someone else discovers an exploit and makes a CFW for profit

 

[MadMan467]

Yeah, hopefully he gives the exploit to team rebug so they can release it he is scared too much.

 

[xcjps]

@qwertyoruiopz

$400 a night for a room in Amsterdam for next week (HITB)

Kid has got the money to spend. Bye bye exploit.

 

[MadMan467]

Seems he was bought by $ony like all the others.

 

[kevambert]

https://news.hitb.org/

 

[ArthurBishop]

https://news.hitb.org/

So this is a conference in CCC style?

 

[defense]

I have no idea why you guys act like you're owed something, it's his choice if he wants to release it or not.

 

[GibboHull]

People are getting almost as bad as those on his timeline begging for another iOS jailbreak, haha!

I dont have any reason to believe he wont release, if he was an unknown maybe but the lad has released ios jailbreaks before.

I do agree that after originally being so open it sucks that hes now gone dark on the subject but the dudes gone away to visit a conference, hes living his life - im sure when he has the time to sit down and put some work into it he will.

 

[SSShowmik]

Don't see anything wrong with him attending that conference. Did he mention yet that he's going on Sony's side? Just asking.

 

[vtaker]

There will be a way to play backups eventually. It takes more than just a kernel exploit to play backups. Maybe nobody has a clue how to do that yet. Some of these guys dance around after finding something but don't follow through to the end goal. Maybe they can't.

I agree with people saying these hackers are mostly just stroking their 2 inchers and trying to get jobs. Good for them.

Someone will release a hack eventually and/or try to make money off one.