A vulnerability puts PSPTM (PlayStation PortableTM) consoles
A vulnerability puts PSPTM (PlayStation PortableTM) consoles
9/5/2006. - A buffer overflow vulnerability has been detected, which could allow malicious code to be run on these popular gaming devices; The nature of the vulnerability could be exploited either using specially-crafted malicious code or directly by hackers.
PandaLabs has detected a vulnerability that affects the popular gaming console PlayStation PortableTM (PSPTM). This flaw is a buffer overflow that allows malicious code to be run on these devices. It is important to mention that a proof of concept already exists that exploits this flaw and works on all versions of PSP firmware that can view TIFF files. In view of this situation, it seems that it would not be too difficult to program malicious code to exploit this security hole.
According to Luis Corrons, director of PandaLabs: “The vulnerability detected is particularly dangerous, as it could be exploited through malicious code programmed for this purpose or even directly by hackers.”
This is not the first case of an attack on gaming consoles. Last year, PandaLabs detected malicious codes designed to target these devices. To be more specific, these were the Format.A and Tahen (variants A and B) Trojans. These Trojans were extremely dangerous as their attacks deleted critical files, and could even irreversibly render the console unusable, in the case of PSPTM.
“It is highly recommendable not to install software that does not come from reliable sources on consoles. Before doing so, it is advisable to scan it first with an updated antivirus solution. Similarly, external communication (USB, IrDA or WiFi) should not be established with untrustworthy consoles or computers that could transfer unwanted information,” concludes Luis Corrons.
To help as many users as possible scan and disinfect their systems, Panda Software offers its free, online anti-malware solution, Panda ActiveScan, which now also detects spyware, at http://www.activescan.com. Webmasters who would like to include ActiveScan on their websites can get the HTML code, free from http://www.pandasoftware.com/partners/webmasters/.
About PandaLabs
Since 1990, PandaLabs’ mission has been to analyze new threats as soon as possible to ensure that our clients are safe. Several teams specialized in each specific type of malware (viruses, worms, Trojans, spyware, phishing, spam, etc.) work 24x7 to offer global coverage. To do this they are supported by TruPrevent™ Technologies, a truly global early warning system made up of sensors that are strategically distributed and neutralize new threats and send them to PandaLabs for in-depth analysis. According to AV-Test.org, PandaLabs is the fastest in the industry to offer complete updates (more information at www.pandasoftware.com/pandalabs.asp).
Oxygen3 24h-365d
by Panda Software
Back
- Chrome comes to Android, but only for the 1 percent
A beta version of Chrome for Android is available to people running Ice Cream Sandwich.
- Microsoft to roll out wave of native mobile apps for its CRM software
Windows Phone 7, iOS, Android and BlackBerry will all be represented.
- Apple to sell 60m iPads in 2012 - analyst
- Cloudyn monitors and optimizes AWS usage
- Micron appoints COO Durcan as CEO after Appleton´s death
- Kinect for Xbox 360 Teams With NFL PLAY 60 and Drew Brees to Unveil ´Kinect for Xbox 360 Super Sunday Challenge´
- Profitero Named IBM Global Entrepreneur of the Year
- IBM Completes Acquisition of Emptoris to Expand Smarter Commerce Initiative
- Lease program would offer users new phone every year
- 162,000 sign petition targeting Apple\'s Chinese factory conditions
Member of IVSZ
Member of SZEK
Acer Affinity Gold partner
Dell Registered Partner
OKI System Shinrai Partner
XEROX Viszonteladó
APC megbízható szállító
EATON Authorized Partner
Cisco partner
Symantec Software Partner
ESET Partner
FUJITSU partner
LENOVO Premium Partner
IBM Business Partner
PARTNERS: Computerworld.hu | GameStar.hu | PCWorld.hu | SG.hu | PC Guru | Hitel