Sponsored Links

Sponsored Links

PlayStation 4 / PS4 Vulnerability Detected By SKFU, Exploit Found?


Sponsored Links
33w ago - Following up on the recent PS4 Factory Service Mode and PS4 Jailbreak rumors, today German PlayStation 4 hacker SKFU Tweeted that an alleged PS4 vulnerability has been detected with hopes that an exploit has been found.

While there currently isn't much more than a single Tweet by SKFU on this rumored PS4 vulnerability, according to him testing is indeed underway. We will update this article if/when new information surfaces, and below is the actual Tweet for those interested:

SKFU ‏@SKFU_PS3:

PS4 vulnerability detected... executing test protocol...

Finally, below are some PS4 Bugs & Vulnerabilities (via psdevwiki.com/ps4/Bugs_&_Vulnerabilities), as follows:

Vidnow (TCP Buffer Overflow)

When you launch Vidnow for the first time it gets [Register or Login to view links]. This file is 5mb. This file loads into a 60k tcp buffer. No checks are done at all on the files size/hash/contents.

Therefore, it is possible to redirect Vidnow to load a substitute file. When vidnow is redirected to load a large enough file the TCP Window buffer is overrun, somewhere between byte 34,125,000 and 35,000,000 of the substitute file.

Despite the buffer overflow and crash, the substitute data is still transmitted and the application only throws the exception when another tcp packet is sent. As a result, the application crashes and the console locks up for a minute.

Directly before the console resumes normal operations after the crash, an unusually large number of tcp (RST) packets are sent. While no exploit that makes use of this crash is currently available, a carefully crafted file may be able to exploit this or similar issues to gain code execution, among other things.

Crash Timeline

17:17:39.899984000 Request
17:17:40.000655000 Request
17:17:40 (System locks up) Crash
17:17:44.957274000 Repsonse
17:17:48.500481000 Response
17:17:48.500567000 Response
17:17:50.356427000 (System no longer locked up) Console Regains Control (74 byte packet sent)
17:17:50.357555000 Contacts Crashlog Server/System Operation Resumes

Sandbox Exploitation

Running your own code in sandbox requires 4 things:

1. Disabling SHA-1 Checksums ✔
2. Generate a valid signature/disable or bypass signature authentication ✖
3. Repacking Containers ✔
4. Crafting proper binary ✔

Assuming you can get code running disabling sandboxing is trivial.




Stay tuned for more PS3 Hacks and PS3 CFW news, follow us on Twitter and be sure to drop by the PS3 Hacks and PS3 Custom Firmware Forums for the latest PlayStation 3 scene updates and homebrew releases!

Comments 11 Comments - Go to Forum Thread »

• Please Register at PS3News.com or Login to make comments on Site News articles. Thanks!

PR0r's Avatar
#11 - PR0r - 33w ago
How has skfu gone in terms of hacking the ps3? I'd like to know more about his work?

From a quick search I've only read a news article about him calling geohots groundbreaking ps3 exploit fake and useless. To this day I thank geohot for his work. Was exciting times back in the early ps3 days.

Hope someone can enlighten me on skfus work. Anyhow I'm glad work is being made and there's interest in hacking the ps4.

kalberto's Avatar
#10 - kalberto - 33w ago
all we need, someone can find the way, how to install pkg files into hdd internal or external using the app, no need to make CFW, but we're need the exploit to read the FW for making another the app

PLAYER 1's Avatar
#9 - PLAYER 1 - 33w ago
Ps4 is designed for online gameplay, so, if it were cracked sony just will retire the physic format out from the market and the choise is clear: cracked and banned or legit and slave.

drphuz's Avatar
#8 - drphuz - 33w ago
SKFU is the real deal. If he says he's on top of it... he is. He is a legit dev.

Kraken's Avatar
#7 - Kraken - 33w ago
I hope he doesn't release it. Right now there aren't many PS4s out there and Sony will patch the exploit within weeks; even if the exploit is believed to be un-patchable like the PS3's was.

Sponsored Links

Sponsored Links
Sponsored Links

Sponsored Links







Affiliates - Contact Us - PS3 Downloads - Privacy Statement - Site Rules - Top - © 2014 PlayStation 3 News