PS4 Webkit exploit updated to support all 4.0x firmwares + SpecterDev’s writeup on namedobj vulnerability
BY
WOLOLO · OCTOBER 23, 2017
Developer @AN0NY420 has added support for firmware 4.05 and 4.01 to the existing port of
Qwertyoruiop‘s Webkit exploit by
SpecterDev. (Do you follow so far?).
It’s likely that this webkit exploit, which was made public by Qwertyoruiop last year, will be used as an entry point for the PS4 Jailbreak that is
expected to come soon for PS4 4.05 and below. As such, having a stable usermode exploit, compatible with multiple firmwares, is probably a great idea.
Qwertyoruiop had
revealed the exploit, which SpecterDev
ported to a variety of firmwares later on. AN0NY420 Added support for 4.05 and 4.01 this week.
As a result, there are multiple repositories + websites hosting this exploit, and they don’t necessarily all have the latest. For now it seems
AN0NY420’s repository can be considered the most up to date, at least until SpecterDev updates his repository.
- Qwertyioruiop’s implementation (4.06 only)
- SpecterDev’s port (compatible with 3.50, 3.55, 3.70, 4.00, 4.06, 4.07)
- AN0NY420’s repository (compatible with 3.50, 3.55, 3.70, 4.00, 4.01, 4.05, 4.06, 4.07)
Additional Info on the 4.05 Kernel exploit (Adieu)
In parallel, SpecterDev has provided more insight into the PS4 namedobj exploit revealed last week by Fail0verflow. SpecterDev was one of the hackers who had worked on the exploit independently, but he explains he wasn’t at liberty to release it due to having received indirect help from Fail0verflow.
His writeup doesn’t provide a full implementation (the fail0verflow writeup doesn’t either), although he might release one in the days to come (he states he needs to clean up his existing implementation). He does however give additional details that complement what Fail0verflow published last week, for the people who want to look into triggering the exploit themselves.
SpecterDev’s writeup can be found on
his github here.
I’m actually a bit surprised that at this point we are not seeing a “race to the finish line” from all hackers who have had access to this kernel exploit for a while, and now have received a green light to release a working jailbreak. I was honestly expecting a release to happen over the weekend. Maybe I’m dramatically underestimating the amount of work required here for some of these devs to cleanup their code and turn it into more than a Proof of Concept, and/or remove exploits that have not been patched by Sony yet.
Whatever happens though, there’s definitely enough material out there for people to actually implement a working kernel exploit and Jailbreak for firmware 4.05.