PS4 FW 7.02 kernel exploit released by TheFlow

ps4 logo.PNG
Renowned for his work in the PSVita scene, TheFlow has extended his contribution into the PS4 scene. Last night, he announced a new kernel exploit he found on the PS4 firmware 7.02. He further mentions that this vulnerability can be combined with a Webkit exploit for firmwares up to 6.72; hinting at the potential Jailbreak.


This exploit has, however, been patched in the PS4's 7.50 FW since TheFlow himself worked with Sony's HackerOne bounty program to expose this issue. For those looking for more technical details around the exploit, head to the HackerOne page right here to learn more.

:arrow: SOURCE
 
Last edited by Prans, , Reason: exploit patched on FW 7.50, not 7.51

Tom Bombadildo

Dick, With Balls
Editorial Team
Joined
Jul 11, 2009
Messages
14,323
Trophies
1
Age
27
Location
I forgot
Website
POCKET.LIKEITS
XP
17,466
Country
United States
IS THAT MEANS someone has to develop/code write it 1st in order to make everything possible?
Yes.

However, because we've already had a kernel entry point on 5.05, most of the heavy work is already done, it just needs to be ported to work on this new exploit.
 

leon315

POWERLIFTER
Member
Joined
Nov 27, 2013
Messages
3,929
Trophies
1
Age
122
XP
3,517
Country
Italy
Yes.

However, because we've already had a kernel entry point on 5.05, most of the heavy work is already done, it just needs to be ported to work on this new exploit.
NICE! And hopefully the guy who did heavy work for 5.05FW is NOT The Flow right? OR was someone else's work?
 

Goku1992A

Well-Known Member
Member
Joined
Nov 20, 2019
Messages
1,731
Trophies
0
Age
30
XP
1,788
Country
United States
Yes.

However, because we've already had a kernel entry point on 5.05, most of the heavy work is already done, it just needs to be ported to work on this new exploit.

Isn't it now meaningless ? I thought TheFl0w was the one who created the hard exploits and the other devs made web kits. If he was on Sony payroll I'm very sure he saw all vulnerabilities and had them fixed he probably even had access to 7.50 CFW at his house and just never released it. I'm just saying the 10K that he received he had to do alot for it and find all exit points. The only way this can work if you have a dev that can see something he didn't see. It's going to be tough because nobody really done the heavy lifting but him.

It's kinda like Atmosphere selling their soul to Nintendo for $250,000 no other devs are working on CFW at the moment in the Nintendo scene except for SXOS. All other minor CFW uses apart of atmosphere. I still think he sold himself short he could have made more than 10K by himself he should had negotiated.
 
Last edited by Goku1992A,

JustMeDaFaq

Well-Known Member
Newcomer
Joined
Apr 17, 2017
Messages
49
Trophies
0
Age
30
XP
692
Country
Germany
It's kinda like Atmosphere selling their soul to Nintendo for $250,000 no other devs are working on CFW at the moment in the Nintendo scene except for SXOS. All other minor CFW uses apart of atmosphere.
Why selling his soul? Hes a grown up developer and its fine to get youre work paid. Why should he care about the piracy kids? (Thats what the PS4 scene is all about to be honest in mayority)
 

Tom Bombadildo

Dick, With Balls
Editorial Team
Joined
Jul 11, 2009
Messages
14,323
Trophies
1
Age
27
Location
I forgot
Website
POCKET.LIKEITS
XP
17,466
Country
United States
NICE! And hopefully the guy who did heavy work for 5.05FW is NOT The Flow right? OR was someone else's work?
No, the Flow had nothing to do with the PS4 prior to this exploit, so it's just a matter of waiting for other devs to create a user-friendly way to launch the exploit. This was his first serious work with PS4 hacking, and went to shit because all the little kiddies were bitching and crying at him to release his exploit for months on end.

Isn't it now meaningless ? I thought TheFl0w was the one who created the hard exploits and the other devs made web kits. If he was on Sony payroll I'm very sure he saw all vulnerabilities and had them fixed he probably even had access to 7.50 CFW at his house and just never released it. I'm just saying the 10K that he received he had to do alot for it and find all exit points. The only way this can work if you have a dev that can see something he didn't see. It's going to be tough because nobody really done the heavy lifting but him.

It's kinda like Atmosphere selling their soul to Nintendo for $250,000 no other devs are working on CFW at the moment in the Nintendo scene except for SXOS. All other minor CFW uses apart of atmosphere.
The fuck are you talking about? You do realize that the exploit is public, right? He literally posted the write up, any dev familiar with the PS4 scene can utilize his work to create a loader for users to launch homebrew on firmwares up to 7.02. I give it a few weeks to a month before someone like SpecterDev releases Mira for 6.72.

He's not on "Sony payroll", he was paid once for his contribution on an exploit that worked for latest firmware, which was 7.02 at the time. Sony themselves then fixed the kernel exploit, which allowed The Flow to publicly release his 7.02 exploit after being paid his due from Sony. He literally got paid to fuck Sony's security and release it to the public.
 

Goku1992A

Well-Known Member
Member
Joined
Nov 20, 2019
Messages
1,731
Trophies
0
Age
30
XP
1,788
Country
United States
Why selling his soul? Hes a grown up developer and its fine to get youre work paid. Why should he care about the piracy kids? (Thats what the PS4 scene is all about to be honest in mayority)

I have no problem for him getting paid selling your soul is just a terminology considering he was "a public servant" in the PS4 scene. I'm only saying 10K wasn't a good deal he could had slapped some DRM on a dongle and he could had made a fortune. The PS4 is pretty big so imagine people would have no problem paying $60 for a dongle so imagine EOL comes and he released his PS4 dongle for $60 only 168 dongles could had made 10K the expected sales for the dongle would have been atleast 5000 since PS4 is still a hot item he could have easily made 300K. Sony would care but not so much because the focus is on PS5 so he would have walked away good. 10K is kinda meh and if he lives in America he has to report that on his taxes. He should have asked for 100K (minimum) or he could have just went on his own and teamed up with SXOS for advice on how to make a DRM dongle. Now the PS4 scene is kinda dead unless another dev can pick up the fallen pieces which would be very difficult because we saw nobody else do it but TheFl0w.

No, the Flow had nothing to do with the PS4 prior to this exploit, so it's just a matter of waiting for other devs to create a user-friendly way to launch the exploit. This was his first serious work with PS4 hacking, and went to shit because all the little kiddies were bitching and crying at him to release his exploit for months on end.


The fuck are you talking about? You do realize that the exploit is public, right? He literally posted the write up, any dev familiar with the PS4 scene can utilize his work to create a loader for users to launch homebrew on firmwares up to 7.02. I give it a few weeks to a month before someone like SpecterDev releases Mira for 6.72.

He's not on "Sony payroll", he was paid once for his contribution on an exploit that worked for latest firmware, which was 7.02 at the time. Sony themselves then fixed the kernel exploit, which allowed The Flow to publicly release his 7.02 exploit after being paid his due from Sony. He literally got paid to fuck Sony's security and release it to the public.

You are not understanding what I'm saying I'm not talking 7.02 I'm talking about beyond. I'm saying is he himself said that he was retiring and he was the founder of the original exploit right? All I'm saying with him out of the picture all the scene is going to get is just a 7.02 jailbreak the only people who are going to benefit are the guys on 5.05 which is a huge jump moving to 7.02
 

Tom Bombadildo

Dick, With Balls
Editorial Team
Joined
Jul 11, 2009
Messages
14,323
Trophies
1
Age
27
Location
I forgot
Website
POCKET.LIKEITS
XP
17,466
Country
United States
You are not understanding what I'm saying I'm not talking 7.02 I'm talking about beyond. I'm saying is he himself said that he was retiring and he was the founder of the original exploit right? All I'm saying with him out of the picture all the scene is going to get is just a 7.02 jailbreak the only people who are going to benefit are the guys on 5.05 which is a huge jump moving to 7.02
He found the 7.02 exploit, he did not find any other exploit. We still have devs like CTurt (who found the first exploit on 1.76), qwertyoruiopz, SpecterDev (who found 5.05 exploit), etc who could all work on the PS4 and find exploits. This isn't "the end" of the PS4 scene, TheFlow literally entered a few months ago, and then exited again because of children bitching and crying.
 

Sora Takihawa

Well-Known Member
Member
Joined
Oct 11, 2015
Messages
3,700
Trophies
1
Age
26
Location
Hamburg
XP
2,505
Country
Germany
no the flow never did anything for the PS4 prior this...but for the PSVita he did

--------------------- MERGED ---------------------------

he is one of the guys who made Henkaku and Enso for the Vita
 

leon315

POWERLIFTER
Member
Joined
Nov 27, 2013
Messages
3,929
Trophies
1
Age
122
XP
3,517
Country
Italy
No, the Flow had nothing to do with the PS4 prior to this exploit, so it's just a matter of waiting for other devs to create a user-friendly way to launch the exploit. This was his first serious work with PS4 hacking, and went to shit because all the little kiddies were bitching and crying at him to release his exploit for months on end.

THX for sum up.
p.s. are those wario's Nipples? :O
 

btaggs

Active Member
Newcomer
Joined
May 24, 2018
Messages
30
Trophies
0
Age
43
XP
1,195
Country
United States
from my understanding the exploit was patched in 7.50 so i dont know what you are getting so bitchy about.

Bitch??? 7.50??? I don't know what you are talking about. Currently, there is not webkit entry point for anything higher than 6.72. If you are on 7.02 you are SOL. If someone releases a webkit entry point for 7.02 you could be in luck but that doesn't exist so you are "unlucky" if your PS4 has been updated to 7.02.
 

TheCasualties

Just trying to be helpful
Member
Joined
May 11, 2020
Messages
440
Trophies
0
Location
The Bardo Islands
XP
473
Country
Netherlands
So uh.. what firmware are most ps4's that are in stores now? Wondering if I should finally pick one up.

Really only want it for a few exclusives but this is pretty exciting. Would probably just buy them used so it might not even matter to me.

Edit: I'll check around at some pawn shops
 
Last edited by TheCasualties,

Goku1992A

Well-Known Member
Member
Joined
Nov 20, 2019
Messages
1,731
Trophies
0
Age
30
XP
1,788
Country
United States
Okay I apologize I thought TheFl0w created the exploit but SpaceDev did. I guess the million dollar question are SpaceDev and TheFl0w used the same methods of cracking the PS4. If so TheFl0w could have interfered with his work. But again nobody is really working on this... it's great that 7.02 (one day) be jailbroken but who is going to work on it.
 

Darth Meteos

Entertainer
Member
Joined
Jan 6, 2015
Messages
1,539
Trophies
1
Age
27
Location
The Wrong Place
XP
4,618
Country
United States
this thread devolved really quickly

as anyone who's been around any scene development will tell you, it's hard, thankless work
theflow has gone straight and good for them, the endgoal should always be to get out of this hellscape
i mean, just look at this thread and imagine this shit every single day
 

godreborn

Well-Known Member
Member
Joined
Oct 10, 2009
Messages
24,177
Trophies
1
XP
15,238
Country
United States
it's not really a jailbreak but rather an exploit. if it were a jailbreak, there'd be no need for the webkit portion. we'd have full access from the start.
 

kumikochan

Well-Known Member
Member
Joined
Feb 4, 2015
Messages
3,753
Trophies
0
Age
34
Location
Tongeren
XP
3,311
Country
Belgium
Great, now we'll get people whining everyday on every site and post " when can we use it ? " A million times a day. We won't be using it for a while since there is no entrypoint exploit ( webkit exploit, save exploit, menu exploit etc ) at the moment for higher firmwares to even use the kernel exploit. You still need an entrypoint to run a kernel exploit. A webkit exploit won't be happening since it has been patched and fixed so heavily after 6.72 ( think the latest one was )a new one beyond 6.72 won't be happening in the next 2 years unless a different entrypoint that isn't a webkit one will be found but those are usually a million times harder to find since all the other ways are a trillion times more secure. Great that it did release tho, bought a while back a whole box with a lot of games in it that I couldn't yet play since I only got a single PS4 pro system still on 5.05. Just don't expect an entry point pas 6.72 for atleast 2 years minimum since a webkit entrypoint beyond that is almost impossible and one that isn't that is even less unlikely by now but atleast we'll finally get to enjoy the glorious 6.72 firmware update for a the coming years and can finally start waving goodbye to 5.05
 
Last edited by kumikochan,
  • Like
Reactions: TheCasualties

kumikochan

Well-Known Member
Member
Joined
Feb 4, 2015
Messages
3,753
Trophies
0
Age
34
Location
Tongeren
XP
3,311
Country
Belgium
it's not really a jailbreak but rather an exploit. if it were a jailbreak, there'd be no need for the webkit portion. we'd have full access from the start.
Even a jailbreak won't do that since a jailbreak doesn't exist on anything else besides an iphone and the term is used and called like that to free an iPhone musically from the iTunes store that jailed up the user allowing users only listening to music through the iTunes store and not any other way hence the term jailbreaking. On a phone that runs Android tho the same way of exploiting like on iPhone is called rooting because you aren't jailed up but since Android was similar to Unix where a superuser ( the head user ) like on PC has root access while a guest does not hence the term rooting the user basically becomes the same superuser through that exploit and you get root access rights. People should stop using the term jailbreaking for consoles since that isn't the correct term at all for exploits that gives you access beyond kernel ones like a bootrom ones or coldboot or ones that are using the master key to sign everything that normally never gets found but was used on the PS3 because an idiot at Sony back then royally fucked up and forgot to delete the key from sight after signing stuff so it was there for everyone to see.
 
Last edited by kumikochan,
  • Like
Reactions: JayPea
General chit-chat
Help Users
    KennieDaMeanie @ KennieDaMeanie: https://youtube.com/shorts/Bjc81tgmnX8?feature=share