Details of VAR-201009-0317

ID

VAR-201009-0317

TITLE

Sony PlayStation 3 (PS3) Local USB Buffer Overflow Vulnerability

Trust: 0.9

sources: CNVD: CNVD-2010-1776 // BID: 42944

DESCRIPTION

The Sony PlayStation 3 is a powerful game console from Sony. A security vulnerability exists in Sony PlayStation 3 that allows local attackers to gain control of the device. There is a buffer overflow error when unplugging or plugging a forged USB device that uses a large device descriptor. The attacker can use a specially constructed USB dongle to physically touch the device, jailbreak the affected device, and execute arbitrary code. This vulnerability has been used by SJailbreak and PSGroove to jailbreak a PS3 device. Failed exploit attempts will result in a denial-of-service condition

Trust: 0.81

sources: CNVD: CNVD-2010-1776 // BID: 42944

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2010-1776

AFFECTED PRODUCTS

vendor:	sony	model:	playstation	scope:	eq	version:	30	Trust: 0.9
vendor:	sony	model:	playstation	scope:	eq	version:	3.3.41	Trust: 0.6
vendor:	sony	model:	playstation	scope:	eq	version:	3.2.4.2	Trust: 0.6
vendor:	sony	model:	playstation	scope:	eq	version:	32.4.2	Trust: 0.3
vendor:	sony	model:	playstation	scope:	eq	version:	33.41	Trust: 0.3

sources: CNVD: CNVD-2010-1776 // BID: 42944

THREAT TYPE

local

Trust: 0.3

sources: BID: 42944

TYPE

Boundary Condition Error

Trust: 0.3

sources: BID: 42944

EXTERNAL IDS

db:	BID	id:	42944	Trust: 0.9
db:	VUPEN	id:	ADV-2010-2277	Trust: 0.6
db:	CNVD	id:	CNVD-2010-1776	Trust: 0.6

sources: CNVD: CNVD-2010-1776 // BID: 42944

REFERENCES

url:	http://www.vupen.com/english/advisories/2010/2277	Trust: 0.6
url:	www.playstation.com	Trust: 0.3

sources: CNVD: CNVD-2010-1776 // BID: 42944

CREDITS

PSJailbreak

Trust: 0.3

sources: BID: 42944

SOURCES

db:	CNVD	id:	CNVD-2010-1776
db:	BID	id:	42944

LAST UPDATE DATE

2022-05-17T02:01:24.513000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2010-1776	date:	2010-09-03T00:00:00
db:	BID	id:	42944	date:	2010-09-02T00:00:00

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2010-1776	date:	2010-09-03T00:00:00
db:	BID	id:	42944	date:	2010-09-02T00:00:00