Join Us and become a Member for a Verified Badge to access private areas with the latest PS4 PKGs.
PS4 Jailbreaking       Thread starter PSXHAX       Start date Mar 30, 2018 at 12:13 AM       70      
Status
Not open for further replies.
Earlier this month we saw the PS4 4.55 WebKit Exploit Write-up by PlayStation 4 developer @SpecterDev, and now he announced on Twitter that he's added the PS4 4.55 / FreeBSD BPF kernel exploit writeup to his GitHub repository crediting qwertyoruiop and stating: "The bug is present on any system running FreeBSD such that you have privileges (which we did on PS4). Could be used on other systems for root to ring0 code execution."

Below is an excerpt from it, with the full documentation available on the Github Repo for those interested in learning more about it! :geek:

To quote: Conclusion

This was a pretty cool bug to exploit and write-up. While the bug is not incredibly helpful on most other systems as it cannot be exploited from an unprivileged user, it is still valid as a method of going from root to ring0 code execution.

I thought this would be a cool bug to write-up (plus I love writing them anyway) as the attack strategy is fairly unique (using a race condition to trigger an out-of-bounds write on the stack). It's also a fairly trivial exploit to implement, and the strategy of overwriting the return pointer on the stack is an easy method for learning security researchers to understand.

It also highlights how while an attack strategy may be old, perhaps this one being the oldest there is - they can still be applied in modern exploitation with slight variations.

Credits
References
Thanks to Edark knight for the heads-up on this earlier today in the forums. (y)
PS4 4.55 BPF Race Condition Kernel Exploit Writeup by SpecterDev.jpg
 

Comments

They should just download ps4 dev kit and made it by themself if they cant be patient (sry 4 my english :))
 
People are stupid ungrateful and cowardly, I would give Flat_z specterdev or qwertyoruiopz and other great dev my golden pantom p playstation when if I had more for this great AMAZING very very hard works.

You can not buy something like that whit money!Something like that can not be done by anyone not even in eight hundred years! Something like that happens once at only in our live history.

Sorry for my badass english i live not in New Jersey.
 
Someone smart says sometime: "god, give me wisdom to accept things i cannot change, and strenght to change things i cannot accept...."

So... Wait or do something. Play with cards u have, or dont play.... Simple as that.
 
He's said that he is not going to sell his research and he always want to share his knowledge with others, but now it is not best the time for release k-exploit
 
I think releasing a 5.50 or even 5.05 keploit would result in major Sony backlash, I am very appreciative of what we have, I was happy just with the 4.05 kexploit. I' rather these developers be allowed to develop than in jail after releasing a kexploit for the newest firmware that resulted in mass backups.

Not that we don't see backups now but it seems from what I've seen for this console vs ps2 or ps3 that a lot more people are lost, hence why Sony maybe hasn't responded.
 
OK, say it. Do not play with people with cryptic and ambiguous answers. Please Mister Luca Todesco, say "I'm not going to publish my exploit." And it's all over. I think he has a very high ego.
 
Dont need 5.xx exploit if the people who do, dump the games. Nearly all 4.55 games work on 4.05. So waiting for the God of War dump or maybe they will release newer exploit when GOW drops
 
Status
Not open for further replies.
Back
Top