Hacking PS4 5.xx Rest mode Kernel exploit revealed

[ManuelKoegler]

Unless you have enabled automatic update (during rest mode), it won’t update automatically, it will however download the update file (and probably kick you offline if you’re not updated) if it hasn’t already. Only way to truly “disable” updates is disconnecting your ps4 from the internet.


Sent from my iPhone using Tapatalk

 

[jDSX]

you can dump the kernel but you can't dump kbl that's the important stuff for kbl you need to glitch ps4 and that of course requires hardware

 

[spotanjo3]

and why you don't update to 4.05 to enjoy games?

I am not ready and I still have plenty games to enjoy on PS3.

 

[placebooooo]

Yes, this is nice. I think mine is on 5.03.

How to disable updates for PS4? I'd like to know right now because ofcourse the PS4 will connect to the internet as soon as it's turned on.

wondering this as well! I'm hanging around on 5.05 currently.

 

[ManuelKoegler]

Unless you have enabled automatic update (during rest mode), it won’t update automatically, it will however download the update file (and probably kick you offline if you’re not updated) if it hasn’t already. Only way to truly “disable” updates is disconnecting your ps4 from the internet.


Sent from my iPhone using Tapatalk

Sent from my iPhone using Tapatalk

 

[Beerus]

yoo this lookin good i hope it supports 5.05

 

[Kurt91]

I hope this works on the newest firmware. I've never once set up a Wi-Fi connection for the console, but it's somehow still gone online here in the dorm building (I'm assuming here, since the Wi-Fi here doesn't require a password) and downloaded all of the updates without asking me or anything. At the very least, I haven't actually installed any of them, so I'm still on 4.07, but I don't know if I'll be able to only partially update, and I don't know if there's any way to delete the downloaded updates.

 

[crossholo]

Yes, this is nice. I think mine is on 5.03.

How to disable updates for PS4? I'd like to know right now because ofcourse the PS4 will connect to the internet as soon as it's turned on.

Disabling Updates
You can disable automatic updates by navigating to Settings → System → Automatic Downloads and Uploads, and uncheck "System Software Update Files" and "Install Automatically".

It may also be a good idea to turn off Internet connection while in stand-by mode under Settings → Power Save Settings → Set Functions Available in Rest Mode and uncheck "Stay Connected to the Internet"; or just disable the Internet altogether.

Deleting Updates
On older firmwares (<4.00?), you can delete already downloaded updates that haven't been installed yet by visiting the Downloads section of your PS4. Navigate to Downloads, select the update and press the Options button and choose "Delete".

On newer firmwares (>4.00?), you cannot delete them via the Downloads section, but instead you can delete it by pressing Options on the update notification and selecting "Delete".

 

[PotatisKnug]

Exploit revealed by @vpikhur

He made a presentation at the Recon Brussels hacking conference showing the exploit and a demo video.
Apparently his exploit uses a vulnerability on sys_kldload.
He also relased the presentation slides later in the day here.

Quoted by wololo.net

According to the developer:
The custom Southbridge silicon, responsive for background downloads while main SoC is off, didn’t help to secure Playstation 4. We explain how a chain of exploits combined with hardware attacks will allow code to run in the context of the secure bootloader, extract private keys, and sign a custom kernel.

According to the hacker, the sys_kldload exploit still exists in firmware 5.00, potentially more recent firmwares as well.
The important point of the video above is that the hack persists after boot, demonstrating what is probably the very first custom firmware on the PS4
Sony changed their keys in 5.05, but apparently not the signing process.
The kernel bootloader contains the keys for Rest Mode kernel, which is why it was interesting to get access to it.
​

How the exploit works is shown in this video.



WHEN ETA??!?!?")=£)/

This is interesting...

 

[Zidapi]

I haven’t been following the ps4 scene.

If I walked into a store today, what is the latest firmware a PS4 Pro is likely to be on?

 

[DSpider]

I haven’t been following the ps4 scene.

If I walked into a store today, what is the latest firmware a PS4 Pro is likely to be on?

4.73.

 

[NANASHI89]

But will it be as easy as the latest PS3 exploit? No need to buy a flasher, or whatever?

Sent from my SM-T280 using Tapatalk

 

[PoppaDre]

i have a 3.55 i need to update and test out the 4.05 exploit. I hope this comes out for 5.50 since my pro is on the beta

 

[operador7]

Most probably these exploit is not even patch on 5.50...

 

[Zidapi]

Most probably these exploit is not even patch on 5.50...

I think they will be now.

4.73.

Thank you.

Do PS4 games contain system software updates, like Nintendo games do? If I wanted to update to 5.0x, would it be as simple as getting a game with the update bundled?

 

[Madridi]

I think they will be now.


Thank you.

Do PS4 games contain system software updates, like Nintendo games do? If I wanted to update to 5.0x, would it be as simple as getting a game with the update bundled?

Even easier.
Download the update from Sony, put it on a USB stick and update from there

 

[Pedeadstrian]

Most probably these exploit is not even patch on 5.50...

I highly doubt that. Sony's probably scrambling to create a fix for it ASAP. Every new game that comes out on an exploitable firmware means less money for them and their partners (and I'm sure neither party is happy about it). Since it's still in beta (and that there's no real necessity for a solid release date) they have all the time in the world to patch it.

 

[placebooooo]

Can I still play online if I remain on 5.05 and future updates come out? The only game I play online is fortnite. I am patient enough to wait if this exploit really becomes a thing soon, but I don't want to have to forfeit my online play when newer firmwares roll out.

 

[soulhunter]

Can I still play online if I remain on 5.05 and future updates come out? The only game I play online is fortnite. I am patient enough to wait if this exploit really becomes a thing soon, but I don't want to have to forfeit my online play when newer firmwares roll out.

I'm in 5.03 and I cannot play online or enter in the store neither, so I doubt they will allow you to play with 5.05 when next update comes out

 

[hexcode99]

Really stupid to release this before 5.50 was out.