Buffer overflow vulnerability could run malicious code
vnunet.com, 11 Sep 2006
Sony's PlayStation Portable handheld console could be infected by malicious code using a buffer overflow vulnerability, according to a warning from an antivirus company.
Panda Software said that proof-of-concept code already exists that exploits this flaw and works on all versions of PSP firmware that can view TIFF files.
"The vulnerability is particularly dangerous as it could be exploited through malicious code programmed for this purpose or even directly by hackers," said Luis Corrons, director of PandaLabs.
Last year, PandaLabs detected the Format.A and Tahen Trojans that were designed to target the PSP and could delete files and even render the console unusable.
"It is highly recommended not to install software on consoles that does not come from reliable sources, and before doing so it is advisable to scan it first with an updated antivirus solution," said Corrons.
"Similarly, external communication by USB, IrDA or Wi-Fi should not be established with untrustworthy consoles or computers that could transfer unwanted information."
Cheap and quirky Nintendo design holds off Sony challenge
Network-enabled video players and download-to-burn expected to add momentum to digital video
References to 'girlfriend's white bits' deemed 'bawdy' but not offensive
Record or watch live television on your console
First Looks Editor Ian Williams gets hands on with the Sony Ericsson Xperia X1
Over a third insist the service should remain free for...
Kernel-based Virtual Machine virtualisation added to latest Enterprise Linux beta
Do you agree?
Have your say on this article