Sponsored Links

Sponsored Links

Page 1 of 2 12 LastLast
Results 1 to 10 of 12



  1. #1
    Forum Moderator PS3 News's Avatar
    Join Date
    Apr 2005
    Posts
    28,670
    Sponsored Links

    PlayStation 4 / PS4 Vulnerability Detected By SKFU, Exploit Found?

    Sponsored Links
    Following up on the recent PS4 Factory Service Mode and PS4 Jailbreak rumors, today German PlayStation 4 hacker SKFU Tweeted that an alleged PS4 vulnerability has been detected with hopes that an exploit has been found.

    While there currently isn't much more than a single Tweet by SKFU on this rumored PS4 vulnerability, according to him testing is indeed underway. We will update this article if/when new information surfaces, and below is the actual Tweet for those interested:

    SKFU ‏@SKFU_PS3:

    PS4 vulnerability detected... executing test protocol...

    Finally, below are some PS4 Bugs & Vulnerabilities (via psdevwiki.com/ps4/Bugs_&_Vulnerabilities), as follows:

    Vidnow (TCP Buffer Overflow)

    When you launch Vidnow for the first time it gets [Register or Login to view links]. This file is 5mb. This file loads into a 60k tcp buffer. No checks are done at all on the files size/hash/contents.

    Therefore, it is possible to redirect Vidnow to load a substitute file. When vidnow is redirected to load a large enough file the TCP Window buffer is overrun, somewhere between byte 34,125,000 and 35,000,000 of the substitute file.

    Despite the buffer overflow and crash, the substitute data is still transmitted and the application only throws the exception when another tcp packet is sent. As a result, the application crashes and the console locks up for a minute.

    Directly before the console resumes normal operations after the crash, an unusually large number of tcp (RST) packets are sent. While no exploit that makes use of this crash is currently available, a carefully crafted file may be able to exploit this or similar issues to gain code execution, among other things.

    Crash Timeline

    17:17:39.899984000 Request
    17:17:40.000655000 Request
    17:17:40 (System locks up) Crash
    17:17:44.957274000 Repsonse
    17:17:48.500481000 Response
    17:17:48.500567000 Response
    17:17:50.356427000 (System no longer locked up) Console Regains Control (74 byte packet sent)
    17:17:50.357555000 Contacts Crashlog Server/System Operation Resumes

    Sandbox Exploitation

    Running your own code in sandbox requires 4 things:

    1. Disabling SHA-1 Checksums ✔
    2. Generate a valid signature/disable or bypass signature authentication ✖
    3. Repacking Containers ✔
    4. Crafting proper binary ✔

    Assuming you can get code running disabling sandboxing is trivial.

    PlayStation 4 / PS4 Vulnerability Detected By SKFU, Exploit Found?

    More PlayStation 4 News...

  2. #2
    Contributor mossopinc's Avatar
    Join Date
    Sep 2009
    Posts
    16
    Sponsored Links
    Sponsored Links
    Sweet hooe this is true and leads to the good stuff!

  3. #3
    Member abzii's Avatar
    Join Date
    Jan 2010
    Posts
    28
    Sponsored Links

    Smile

    Sponsored Links
    at least this is some good news. hope we dont have to try to get an earlier model ps4 or a day 1 release by the time its cracked. good work

  4. #4
    Senior Member tigereye's Avatar
    Join Date
    Sep 2010
    Posts
    120
    i buy it with very big hope ...hope they will cracked it and we can enjoy ....for a long time... with many future for now or till middle next year or end there are no good games ...most big blockbuster game delay etc... right now i feel the same like when i buy psvita ...

  5. #5
    Senior Member babyjoe00069's Avatar
    Join Date
    Jul 2008
    Posts
    201
    dont worry i have 2 ps4s still sealed in a box for just that occasion, prices will be high though if it gets cracked/jailbroken/whatever

  6. #6
    Senior Member Xplic1T's Avatar
    Join Date
    Jun 2008
    Posts
    69
    Comon SKFU ... we're literally rooting for you sorry NIX humor

    I dont want to wait possibly 7 years for a jig to get lost.

  7. #7
    Senior Member Sostanco's Avatar
    Join Date
    Aug 2010
    Posts
    157
    let's wait and see if asomething comes out. really a good news!

  8. #8
    Senior Member Kraken's Avatar
    Join Date
    Apr 2005
    Posts
    944
    I hope he doesn't release it. Right now there aren't many PS4s out there and Sony will patch the exploit within weeks; even if the exploit is believed to be un-patchable like the PS3's was.

  9. #9
    Senior Member drphuz's Avatar
    Join Date
    Jan 2011
    Posts
    175
    SKFU is the real deal. If he says he's on top of it... he is. He is a legit dev.

  10. #10
    Contributor PLAYER 1's Avatar
    Join Date
    Jan 2011
    Posts
    10
    Ps4 is designed for online gameplay, so, if it were cracked sony just will retire the physic format out from the market and the choise is clear: cracked and banned or legit and slave.

 
Sponsored Links

Page 1 of 2 12 LastLast
Advertising - Affiliates - Contact Us - PS3 Downloads - PS3 Forums - Privacy Statement - Site Rules - Top - © 2015 PlayStation 3 News