PS4 PPPwn - PlayStation 4 PPPoE RCE - (The First PS4 Kernel RCE - Supporting upto FW 11.00) by TheFlow

Scene Developer & Hacker TheFlow who has been a legend in various PlayStation Scene's, has done it yet again!! This time the developer has released "The first PlayStation 4 Kernel RCE, Supporting FWs upto 11.00".

With the newly released (PoC) jailbreak the community will be able to update popular Homebrew Enabler's (Mira & GoldHEN) to support firmware 11.00 with this new jailbreak that TheFlow has disclosed (CVE-2006-4304) through the bounty program and has been patched in the latest PS4 firmware available

​

via @theflow0

Decided to publish PPPwn early. The first PlayStation 4 Kernel RCE. Supporting FWs upto 11.00.
https://github.com/TheOfficialFloW/PPPwn

(note: video is re-publish of original)​

​

About Official Usage Video Tutorial

• 
  
  PPPwn - PlayStation 4 PPPoE RCE​
  PPPwn is a kernel remote code execution exploit for PlayStation 4 upto FW 11.00. This is a proof-of-concept exploit for CVE-2006-4304 that was reported responsibly to PlayStation.
  Supported versions are:
  
  • FW 9.00
  • FW 11.00
  • more can be added (PRs are welcome)
  The exploit only prints PPPwned on your PS4 as a proof-of-concept. In order to launch Mira or similar homebrew enablers, the stage2.bin payload needs to be adapted.
  
  
  Requirements
  
  • Computer with Ethernet port
    • USB adapter also works
  • Ethernet cable
  • Linux
    • You can use VirtualBox to create a Linux VM with Bridged Adapter as network adapter to use the ethernet port in the VM.
  • Python3 and gcc installed
  
  
• 
  See Readme @:
  
  • https://github.com/TheOfficialFloW/PPPwn
• 
  Modded Warefare has put together a video of the process:
  
  
  

https://twitter.com/theflow0/status/1785349486723698809
https://github.com/TheOfficialFloW/PPPwn​

---

dThe question has been asked by various user's, Can this be adapted to the PS5? via SpecterDev on X answer this question

Since I've seen a lot of ppl asking about it, theflow's latest RCE won't easily be adapted to PS5. PS4 is much weaker in terms of mitigations which played a part in allowing a remote exploit w/o userland code execution. PS5 is different. SMAP+CFI make this much harder to do. 1/2

OM also plays a role, even if CFI were a non-issue, you can't easily get gadgets to ROP with either. It might not be impossible but a new strategy would be needed and you'd need to go for R/W. You'd also likely need userland code exec. I wouldn't expect anything soon.. 2/2

 

goldhen on 11 exist, idk why here not exist a guide now

 

I've just bought a ps4 on 10.0 ofw,
Can anyone provide a way to install 11.00 update to be able to run this or Am I better waiting for things to develop and staying on 10 ?

 

I've just bought a ps4 on 10.0 ofw,
Can anyone provide a way to install 11.00 update to be able to run this or Am I better waiting for things to develop and staying on 10 ?

Personally I'd update to 11.0. You can download it here.

 

 

my ps4 pro witih 11.00fw, won't jailbreak on pppwn gui 1.9

 

my ps4 pro witih 11.00fw, won't jailbreak on pppwn gui 1.9

Keep trying. This exploit doesn't have a 100% success rate. Imo its success rate is about 10%, just leave the app running until it successfully jailbreaks the console.

 

Keep trying. This exploit doesn't have a 100% success rate. Imo its success rate is about 10%, just leave the app running until it successfully jailbreaks the console.

 

That's odd. Do you have the correct version of Npcap installed?

 

That's odd. Do you have the correct version of Npcap installed?

yes, tried below app

pppwn gui v1.9
pppwn go v2.6.3
pppwn lite v5.3

always fails.

 

Code 31 error indicates a driver problem. Try downloading the drivers for your network card and manually reinstalling them (this includes updating). Alternatively, try a different network card.

 

Code 31 error indicates a driver problem. Try downloading the drivers for your network card and manually reinstalling them (this includes updating). Alternatively, try a different network card.

do i need to bridge or share the wifi internet to the LAN ethernet?

 

You don't bridge or share anything. Make sure your ethernet connection to the PS4 is unbridged and unmodified.

 

You don't bridge or share anything. Make sure your ethernet connection to the PS4 is unbridged and unmodified.

same results
same error

anyway on view network connection on windows 11, what is your status on your ethernet?
identifying?

 

exist the update for "cursed" ps4

 

same results
same error

anyway on view network connection on windows 11, what is your status on your ethernet?
identifying?

Do a reset for the network

 

Since i bought a PS5, i stopped updating my ps4 to wait for this.. Now i just checked and my ps4 is on 11.02......

 

Wow, that's an impressive milestone! TheFlow continues to push boundaries in the hacking and exploit development space.