Sony Bravia smart TVs had vulnerability in photo app

Oct

4

2018

Sony and security company Fortinet advise owners of Bravia TVs with the Photo Sharing Plus to update the firmware. The photo application on the TVs contains a vulnerability that can be exploited remotely.

Sony recently announced that due to a security problem with the Photo Sharing Plus app new firmware has appeared for the Bravia models R5C, WD75, WD65, XE70, XF70, WE75, WE6 and WF6. The app allows users to view photos and video from a smartphone or tablet.

The application was susceptible to stack buffer overflows , directory traversal and command injection , allowing malicious people to execute code on the TVs with increased rights without authentication. The attacker must already have access to the same network as the TV connected to, which limits the impact.

Fortinet publishes the details of the vulnerability now that Sony has completed the distribution of the ota update. The security company discovered the problem on 27 March and on 3 April Sony started developing a patch that was offered from 1 June.

Viewing:-47

In: A Technology & Gadgets Asked By: [21378 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »