New PS4 5.0x Exploit Could Allow Attackers To Access The Console In Rest Mode

Sony’s PS4 has been the target of hackers for a number of years now, and while some of them have been working to open the hardware up, or jailbreak it, others are trying to access them for more malicious reasons.

One new exploit, announced during the Recon Brussels hacking conference, appears to give those people a leg-up in gaining access to a PS4 while it is in Rest Mode, a low power state that allows the PS4 to stay powered on but with minimal power usage.

The exploit was shown off by a hacker by the name of Volodymyr Pikhur who apparently has known about it for two years. He has chosen to share it now because Sony does not offer any kind of bug bounty, meaning he cannot be paid for sharing it. Of course, he could have just told Sony about the exploit for free, but instead he chose to share it with the world, including video of the exploit in action and slides detailing its execution.

Experts believe that there was enough information shared to allow attackers to take advantage of Pikhur’s work, and Wololo reached out to gather more information.

  • According to the hacker, the sys_kldload exploit still exists in firmware 5.00, potentially more recent firmwares as well
  • The important point of the video above is that the hack persists after boot, demonstrating what is probably the very first custom firmware on the PS4
  • Sony changed their keys in 5.05, but apparently not the signing process.
  • The kernel bootloader contains the keys for Rest Mode kernel, which is why it was interesting to get access to it.

It is hoped that Sony will issue a firmware patch to plug the security holes on display here, although it is obviously unknown when that will be forthcoming.

(Source: Volodymyr Pikhur [Twitter])

You may also like to check out:

You can follow us on Twitter, add us to your circle on Google+ or like our Facebook page to keep yourself updated on all the latest from Microsoft, Google, Apple and the Web.