Hacking PS4 3.55 Code Execution PoC

[_eyCaRambA_]

Kinda weird that there hasn't been a thread for this yet.
Fire30 made this PoC based on the same webkit vulnerability that henkaku is using. Not too much to see yet but of course it's a great developement in the right direction.

This repo contains a PoC for getting code execution on ps4's with firmware version 3.55
It uses the same webkit vulnerability as the henkaku project. So far there is basic ROP working and returning to normal execution is included.
Next steps will be to map a jit page sucessfully and getting actual shellcode executed.

Github with download and instructions: https://github.com/Fire30/PS4-3.55-Code-Execution-PoC

 

[retrofan_k]

Wouldn't call it weird, since most including myself, follow other sites for other console related news. I mostly use temp for 3Ds and WiiU related developments.

But thanks for sharing it. Guess I will be keeping my ps4 offline for a bit

 

[CitizenSnips]

Interesting, hopefully homebrew will be possible soon. Does that update bypasser still work? I'll probably have to use that when they patch it

 

[sj33]

I made a point of keeping my PS4 on 3.50 after the reported exploits, but that led nowhere. I wonder if I should now just update to 3.55.

 

[Xuman]

Yeah buddy! 3.55 is Sony's Special Number

 

[sj33]

http://ccm.net/faq/36692-playstation-4-how-to-install-system-updates-from-a-usb-key

Looks like we can just update offline anyway even if Sony do release a new update.

 

[retrofan_k]

I made a point of keeping my PS4 on 3.50 after the reported exploits, but that led nowhere. I wonder if I should now just update to 3.55.

Do it now, you won't regret it. Mine is on 3.55 and the WiFi settings deleted as of now. I'd rather have the firmware there installed regardless of having usb access later. I did the same with my vita as I had 3.51 but said fuck it and updated to 3.60 and not regretted it.

I do online on the ps4, so might have to consider another machine for online.

--------------------- MERGED ---------------------------

Yeah buddy! 3.55 is Sony's Special Number

Quite a coincidence though when you think about it. It's only the Vita that skipped lol.

 

[Selim873]

http://ccm.net/faq/36692-playstation-4-how-to-install-system-updates-from-a-usb-key

Looks like we can just update offline anyway even if Sony do release a new update.

My PS4 is already at 3.55, but I think everyone should download it anyway in case if someone made a CFW, some methods might require it. ¯\_(ツ)_/¯

 

[TheGreek Boy]

i updated from 3.50 to 3.55 and waiting for kernel exploit

 

[VinsCool]

Still no hope for 3.55+ PS3s?

That would be cool to have somethibg that isn't hardware based.

 

[Xuman]

Still no hope for 3.55+ PS3s?

That would be cool to have somethibg that isn't hardware based.

Nah, 3.55 is the gravy train. If you need a downgrade im sure someone could hook you up

 

[Deleted member 333767]

According to Wololo it's only a user-land exploit.... Unless there is a kernel exploit to compliment it, 1.76 will still be the golden firmware for now.

But good progress, nonetheless!

 

[rikumax25!]

what's the actual ps4 versión online?

 

[digipimp75]

Still waiting for a reason to use my spare 1.76 PS4. Right now it's just sitting in a box, desperately yearning for cfw.

 

[Cyan]

what's the actual ps4 versión online?

3.55 (just checked 5 seconds ago)

 

[Deleted-355425]

Still waiting for a reason to use my spare 1.76 PS4. Right now it's just sitting in a box, desperately yearning for cfw.

Mine too, it's had about 30 minutes on time from new to test it and check the hdmi port for defects and it's gone back in its box

 

[atomsk]

This will probably be patched with Firmware 4.0 when it is released.

 

[n00b2015]

hello...

i bought couple of 2d games for ps4 and i'm tired of waiting for exploit. should i wait a little bit more or there wont be anything soon?

 

[Deleted member 333767]

hello...

i bought couple of 2d games for ps4 and i'm tired of waiting for exploit. should i wait a little bit more or there wont be anything soon?

Nobody can say, it's completely your own decision if you want to wait or not.

In this day and age of console hacking; "The lower your firmware, the better!"

 

[n00b2015]

i know i have 3.15 i think...havent turn on ps4 for 6 months. Cant decide.