Sponsored Links

Sponsored Links

PlayStation 4 / PS4 Vulnerability Detected By SKFU, Exploit Found?

Sponsored Links
60w ago - Following up on the recent PS4 Factory Service Mode and PS4 Jailbreak rumors, today German PlayStation 4 hacker SKFU Tweeted that an alleged PS4 vulnerability has been detected with hopes that an exploit has been found.

While there currently isn't much more than a single Tweet by SKFU on this rumored PS4 vulnerability, according to him testing is indeed underway. We will update this article if/when new information surfaces, and below is the actual Tweet for those interested:


PS4 vulnerability detected... executing test protocol...

Finally, below are some PS4 Bugs & Vulnerabilities (via psdevwiki.com/ps4/Bugs_&_Vulnerabilities), as follows:

Vidnow (TCP Buffer Overflow)

When you launch Vidnow for the first time it gets [Register or Login to view links]. This file is 5mb. This file loads into a 60k tcp buffer. No checks are done at all on the files size/hash/contents.

Therefore, it is possible to redirect Vidnow to load a substitute file. When vidnow is redirected to load a large enough file the TCP Window buffer is overrun, somewhere between byte 34,125,000 and 35,000,000 of the substitute file.

Despite the buffer overflow and crash, the substitute data is still transmitted and the application only throws the exception when another tcp packet is sent. As a result, the application crashes and the console locks up for a minute.

Directly before the console resumes normal operations after the crash, an unusually large number of tcp (RST) packets are sent. While no exploit that makes use of this crash is currently available, a carefully crafted file may be able to exploit this or similar issues to gain code execution, among other things.

Crash Timeline

17:17:39.899984000 Request
17:17:40.000655000 Request
17:17:40 (System locks up) Crash
17:17:44.957274000 Repsonse
17:17:48.500481000 Response
17:17:48.500567000 Response
17:17:50.356427000 (System no longer locked up) Console Regains Control (74 byte packet sent)
17:17:50.357555000 Contacts Crashlog Server/System Operation Resumes

Sandbox Exploitation

Running your own code in sandbox requires 4 things:

1. Disabling SHA-1 Checksums ✔
2. Generate a valid signature/disable or bypass signature authentication ✖
3. Repacking Containers ✔
4. Crafting proper binary ✔

Assuming you can get code running disabling sandboxing is trivial.

Stay tuned for more PS3 Hacks and PS3 CFW news, follow us on Twitter, Facebook and drop by the PS3 Hacks and PS3 Custom Firmware Forums for the latest PlayStation 3 scene and PlayStation 4 scene updates and fresh homebrew PS3 Downloads. Enjoy!
Sponsored Links
Sponsored Links

Comments 11 Comments - Go to Forum Thread »

• Please Register at PS3News.com or Login to make comments on Site News articles.
#11 - PR0r - 60w ago
PR0r's Avatar
How has skfu gone in terms of hacking the ps3? I'd like to know more about his work?

From a quick search I've only read a news article about him calling geohots groundbreaking ps3 exploit fake and useless. To this day I thank geohot for his work. Was exciting times back in the early ps3 days.

Hope someone can enlighten me on skfus work. Anyhow I'm glad work is being made and there's interest in hacking the ps4.

#10 - kalberto - 60w ago
kalberto's Avatar
all we need, someone can find the way, how to install pkg files into hdd internal or external using the app, no need to make CFW, but we're need the exploit to read the FW for making another the app

#9 - PLAYER 1 - 60w ago
PLAYER 1's Avatar
Ps4 is designed for online gameplay, so, if it were cracked sony just will retire the physic format out from the market and the choise is clear: cracked and banned or legit and slave.

#8 - drphuz - 60w ago
drphuz's Avatar
SKFU is the real deal. If he says he's on top of it... he is. He is a legit dev.

#7 - Kraken - 60w ago
Kraken's Avatar
I hope he doesn't release it. Right now there aren't many PS4s out there and Sony will patch the exploit within weeks; even if the exploit is believed to be un-patchable like the PS3's was.

#6 - Sostanco - 60w ago
Sostanco's Avatar
let's wait and see if asomething comes out. really a good news!

#5 - Xplic1T - 60w ago
Xplic1T's Avatar
Comon SKFU ... we're literally rooting for you sorry NIX humor

I dont want to wait possibly 7 years for a jig to get lost.

#4 - babyjoe00069 - 60w ago
babyjoe00069's Avatar
dont worry i have 2 ps4s still sealed in a box for just that occasion, prices will be high though if it gets cracked/jailbroken/whatever

#3 - tigereye - 60w ago
tigereye's Avatar
i buy it with very big hope ...hope they will cracked it and we can enjoy ....for a long time... with many future for now or till middle next year or end there are no good games ...most big blockbuster game delay etc... right now i feel the same like when i buy psvita ...

#2 - abzii - 60w ago
abzii's Avatar
at least this is some good news. hope we dont have to try to get an earlier model ps4 or a day 1 release by the time its cracked. good work


Sponsored Links

Sponsored Links

Advertising - Affiliates - Contact Us - PS3 Downloads - PS3 Forums - Privacy Statement - Site Rules - Top - © 2015 PlayStation 3 News