Vulnerabilities: Difference between revisions

From PS4 Developer wiki
Jump to navigation Jump to search
mNo edit summary
Line 1: Line 1:
=== VidNow ===
D=== VidNow ===
A possible exploit has been found in VidNow App in the Playstation Store App .
A possible exploit has been found in VidNow App in the Playstation Store App .
PATCHED: Sony has hotfixed this exploit via content hashing the file while in transit.
UPDATE:  Some have managed to reverse the hotfix but the method is not known - the PS4 checks the content
        hash HTTP header from the HMAC header.


== Patched ==
== Patched ==

Revision as of 12:35, 12 January 2015

D=== VidNow === A possible exploit has been found in VidNow App in the Playstation Store App .

PATCHED: Sony has hotfixed this exploit via content hashing the file while in transit.

UPDATE: Some have managed to reverse the hotfix but the method is not known - the PS4 checks the content

        hash HTTP header from the HMAC header.

Patched

WebKit

WebKit/536.26 exploit on System Firmware 1.760.000 and lower (patched in 2.000.000)

http://wololo.net/2014/10/24/webkit-exploit-confirmed-to-run-on-ps4-firmware-1-76/