A vulnerability puts PSPTM (PlayStation PortableTM) consoles
A vulnerability puts PSPTM (PlayStation PortableTM) consoles
9/5/2006. - A buffer overflow vulnerability has been detected, which could allow malicious code to be run on these popular gaming devices; The nature of the vulnerability could be exploited either using specially-crafted malicious code or directly by hackers.
PandaLabs has detected a vulnerability that affects the popular gaming console PlayStation PortableTM (PSPTM). This flaw is a buffer overflow that allows malicious code to be run on these devices. It is important to mention that a proof of concept already exists that exploits this flaw and works on all versions of PSP firmware that can view TIFF files. In view of this situation, it seems that it would not be too difficult to program malicious code to exploit this security hole.
According to Luis Corrons, director of PandaLabs: “The vulnerability detected is particularly dangerous, as it could be exploited through malicious code programmed for this purpose or even directly by hackers.”
This is not the first case of an attack on gaming consoles. Last year, PandaLabs detected malicious codes designed to target these devices. To be more specific, these were the Format.A and Tahen (variants A and B) Trojans. These Trojans were extremely dangerous as their attacks deleted critical files, and could even irreversibly render the console unusable, in the case of PSPTM.
“It is highly recommendable not to install software that does not come from reliable sources on consoles. Before doing so, it is advisable to scan it first with an updated antivirus solution. Similarly, external communication (USB, IrDA or WiFi) should not be established with untrustworthy consoles or computers that could transfer unwanted information,” concludes Luis Corrons.
To help as many users as possible scan and disinfect their systems, Panda Software offers its free, online anti-malware solution, Panda ActiveScan, which now also detects spyware, at http://www.activescan.com. Webmasters who would like to include ActiveScan on their websites can get the HTML code, free from http://www.pandasoftware.com/partners/webmasters/.
About PandaLabs
Since 1990, PandaLabs’ mission has been to analyze new threats as soon as possible to ensure that our clients are safe. Several teams specialized in each specific type of malware (viruses, worms, Trojans, spyware, phishing, spam, etc.) work 24x7 to offer global coverage. To do this they are supported by TruPrevent™ Technologies, a truly global early warning system made up of sensors that are strategically distributed and neutralize new threats and send them to PandaLabs for in-depth analysis. According to AV-Test.org, PandaLabs is the fastest in the industry to offer complete updates (more information at www.pandasoftware.com/pandalabs.asp).
Oxygen3 24h-365d
by Panda Software
Back
- Microsoft revamps Bing to include interactive social sidebar
The three-column interface also includes a ´snapshot´ for more direct interaction with products and places.
- Adobe Creative Cloud Now Available
Two New Touch Apps for iOS and Adobe Muse Also Shipping
- Acer G6 series - Super-slim design, inspiring performance
- Come Explore the VIA Smart Ecosystem at Computex 2012
- HP tries to beat ultrabook pricing with thin-and-light Sleekbooks
- MasterCard´s PayPass Wallet will span online, mobile, in-store shopping
- Google infringed Java copyrights in Android, jury finds
- After false alarm, no verdict Friday in Oracle Google
- Lenovo building industrial center to develop tablets, smartphones
- Facebook´s valuation for IPO will be lower than initially expected
Member of IVSZ
Member of SZEK
Acer Affinity Gold partner
Dell Registered Partner
OKI System Shinrai Partner
XEROX Viszonteladó
APC megbízható szállító
EATON Authorized Partner
Cisco partner
Symantec Software Partner
ESET Partner
FUJITSU partner
LENOVO Premium Partner
IBM Business Partner
PARTNERS: Computerworld.hu | GameStar.hu | PCWorld.hu | SG.hu | PC Guru | Hitel