PS4 Jailbreak: qwertyoruiop progresses on PS4 Webkit hack, states he has a 4.50 kernel exploit
A lot has happened over the past few days since hacker qwertyoruiop publicly released a Webkit exploit on the PS4 for firmwares 4.07 and below.
The hacker has been busy updating his webkit exploit, which can be publicly found on his site rce.party/ps4. Initially a simple proof of concept, the tool now provides a series of basic system calls for hackers to dive deeper in the system (still usermode), in particular for firmware 4.06. On that topic, for those of you interested in how these exploits work, it is fascinating to see how the source code of that page, and the underlying javascript, have been evolving so far.
Maybe more importantly, qwertyoruiop stated he has a kernel exploit on the PS4, which according to him is a 0 day vulnerability and as such should work on firmware 4.50. The hacker tweeted a couple days ago: “Nothing to kernel in 5 days. GG sony”, then confirmed on twitter the exploit should work on 4.50.
As a reminder however, the webkit exploit he uses only works up to firmware 4.07, and the developer himself runs on 4.06. One needs both a usermode entry point (in this case, the 4.0xwebkit exploit) and a privilege escalation vulnerability (the kernel exploit) to gain full access to the console.
Source qwertyoruiop
Although the Webkit exploit is very real and public, nothing has been mentioned so far about a release for the kernel exploit.
However, many points confirm the hacker does indeed have kernel access. People have speculated that his announce might have been an April’s fool, but with his twitter account mentioning the exploit in tweets spanning more than 48 hours now, this is very unlikely to be a bad joke, and qwertyoruiop’s reputation in the iOS world speaks for itself.
Nothing to kernel in 5 days. GG sony
— qwertyoruiop (@qwertyoruiopz) March 31, 2017
@ChronicleArc 0day, it should work on 4.50 too
— qwertyoruiop (@qwertyoruiopz) April 1, 2017
(not an april’s fools)
— qwertyoruiop (@qwertyoruiopz) April 2, 2017
More importantly, famed ps4 hacker CTurt posted today that he is updating his PS4 console from firmware 1.76 to 4.06. This, a few days after updating his PS4 SDK after almost a year of inactivity.
1.76 -> 4.06 pic.twitter.com/zyV0hC97kY
— CTurt (@CTurtE) April 2, 2017
1.76 is the firmware for which CTurt had revealed two kernel exploits in 2015, and the only firmware which is publicly fully hacked. In other words, if CTurt is updating his console to 4.06, it means qwertyoruiop is onto something. It’s worth mentioning that the two hackers were already working together on the kernel exploits being used for 1.76.
Will the 4.50 PS4 Jailbreak be released?
What about a release, then? Let’s summarize a few things:
- The Webkit exploit works up to firmware 4.07
- The Kernel exploit allegedly works up to firmware 4.50, since it is a 0 day exploit
- You need both exploits to get full control of the console, so people on firmware 4.50 are out of luck, however usermode exploits are historically much easier to find than kernel.
- CTurt and qwertyoruiop both have track records of releasing their exploits (CTurt released his exploits for PS4 1.76, qwertyoruiop has released Jailbreaks for iOS)
- however in general their releases happened for known and/or patched vulnerabilities.
The fact that the kernel exploit works on the latest PS4 firmware might lead the hackers to reconsider doing any sort of release until it gets patched. With that being said, it seems staying on your current firmware could be a bright idea at this point: people on 4.07 or lower have a higher chance of seeing something soon, and hope exists for 4.50 users.
In parallel, Chaitin Tech, the hackers behind the undisclosed 4.05 PS4 Jailbreak (and who disclosed the exploit to Sony, leading to it being patched in 4.06) are doing a talk at zer0con in a few weeks. It is unclear if they will reveal anything about the internals of their jailbreak.
We’ll update our PS4 Jailbreak page as we get more information on this topic.
Sources: CTurt, qwertyoruiop
Long live qwertyoruiop!! Exciting days!
Nice, i’m at 4.07. gib free gamz.
We are at 2.57! 🙂
Looking forward to replacing my cfw PS3 with a cfw PS4.
What firmware are the current PS4s being shipped with? I think it’s time I made the big leap!
Afaik nothing will be coming with a firmware over 4.06. Definitely not 4.50 yet.
4.07 is the latest on ps4 pro
It’s not fake for sure, but do not expect anything, because it’s not that hard to find the guy…reputation or jail?
Why he make the noise and attract $ony before the release?
Like hey $ony, I’m a hacker, I’m going to hack your device, catch me if you can?!
Does it jump from 4.07 to 4.50?
Yes, it jumps from firmware 4.07 to 4.50. If you are interested in the modding possibilities, it might be best to not update
None of the good stuff (CFW, backups, homebrew) came out of 1.76. What makes you think anything good is gonna come out this time?
This is a kernel exploit.
Yeah, so was the 1.76 one (called “BadIRET”). And?? What came of it? A few select people could run Linux, for SNES emulators… Whoopeee. NOBODY cares about Linux on the PS4.
It literally says in the post 1.76 had 2 kernel exploits.
I believe it just takes time. A lot of time. Honestly all I’d like is a way to backup my games so I wouldn’t have to get up all the time to change discs. I know I don’t have to if they’re digital, but I prefer disc games because they aren’t linked to an account.
I’d be surprised if qwertyoruiop releases something again, the iOS community was pretty terrible when he was working on that.
Was? Check the replies to his tweets, they won’t shut up about the 10.x ios firmware
Yeah I wonder if they will ever figure out that repeatedly asking and begging won’t get them anything
Yeah it’s pretty sick how desperate they are. He makes a tweet about progress for jailbreaking the PS4, and all the replies are littered with “10.2.1 jb?” “What about 10.2?” “Cool, but 10.2?” “How to JB 10.2?”
Literally, every tweet he makes is replied with that ***.
love him!!!
Protože ps vita to mela stejne napolo hacknuty system a dump byl az dyl.
ps4 je ale uplna ina architektura – snad bude na 4.07 aspon Linux 😛
My PS4 will stay in the box on FW 1.76, when cfw gets released for that I’ll open it
Yeah, good luck with that…
OFW 1.76 (which has heralded as the PS4 “holy grail”, “kernel exploits”, etc), came out in August 2014. THREE YEARS AGO! And…?? Nothing. To this day, that firmware version means absolutely nothing. Sure, there was some Linux stuff demoed, but let’s be honest here, nobody cares about Linux on PS4. You can run it just fine in VirtualBox on even low-end laptops (circa 2008) without issues. And for what? SNES emulators? Come on…
The PS4 desperately needs some hacking love. PS Vita exploits came out too late for the console to be relevant any more.
yeah but he has no reason to upgrade until something *does* come out. Even if nothing comes out of 1.76.
Apparently cturt persuaded qwertyoruiopz not to release kernel exploit… At least not until Sony patch 4.50. he thinks sony will come after him. Plus they’ll get bounty from Sony when they tell about the exploit. Chinese group did the same. $$ talks. So fun is over for another 6 months
As much as we don’t want Sony to patch their firmware it will have wider benefits by being incorporated into FreeBSD which will protect users of that os and its derivatives… and for their efforts in this stuff they probably deserve some money
where was this mentioned? any links? thanks
Just another attention who@&
agora vai
OMG I’ve been famous 😀 glad to asked that question..
Anyone have a linnk to 4.06?
http://gxarena.com/Firmwares/PS4/
Thanks! Great site
all just want is that emulator thing that’ on XBOX ONE to work on this then i’ll be in RETRO you know where.
I’m on 4.50 and I don’t care about any exploit.They’re going nowhere just useless twitter talk
aw no free games for you… tears
Free games? Really? This is about using the system to run whatever you like, otherwise, free games is illegal.
Yeah, I learned the hard way that 99% of the time these “developers” are just stroking their own epeen and have zero intention of giving people anything meaningful. Following the Wii U scene in its infancy was absolutely exhausting and even the 3DS scene had its fair share of attention whoring before it finally got to the glorious place it’s at today.
The Vita Kernel Exploit took a shitload of fakers and whoring too lol.
Nice! Does this means that the NS, as having the same OS behind, would be hackeable any time soon?
I have 4.50 PS4 Slim and a first model Ps4 on 1.62. So whatever 😀
What scrubs does it take you guys 10 years to make cfw on ps4 or xbox1 come on you call yourselfs hackers you guys are a embarresmant.
PS4 is a BLACKBOX with custom hardware and modified FreeBSD OS, The cold-blooded $ony may drink your blood if you touch that, what did you expect?
Try hacking GameBoy to understand how embarrassment you are!
It was to avoid drama and legal ***. No one’s gonna make you a mod menu.
I’m still on 3.50 on one of my PS4s.
Can’t wait.
Pretty cool to hear for those of us on 4.50 -I can dream can’t I? 🙂 We may have hope yet! Great site btw!
What is the meaning of 0DAY? I got confused.
I would describe it as an inherent vulnerability that can affect all machines from day one. One that was there when product shipped and that bypasses security and/or read write checks. An update being required from the manufacturer standpoint since if nothing is changed in their coding it will continue to affect machines even after software or os updates.
This is key because while the web kit does not work on 4.50 the kernal exploit does so potentially one could install the exploit and then cfw update to 4.50 or if a web kit exploit is found for 4.50 things could get even more interesting.
CIA/NSA/MI6 are all known for using 0day vulnerabilities to spy on peoples data…
Psxhax click-bate continued…we have a game-backup that is not working on any firmware version, even 1.76! lol
i have a console bought on 2014 it’s still on 1.07 firmware and remains in it’s original box, what do you suggest me guys ? shall i update it to 4.06 and wait fir the new exploit? anyway a kernel exploit is in it’s way, i mean what’s the point to stay low at 1.07, while there’s some new stuf at same level . thank you wololo for this great website, we would have been lost without your efforts !!!