Sony: The Return Of The Rootkit

2007.09.12

Credit: Quark IT - Hilton Travis

Risk: Medium

Local: Yes

Remote: Yes

CVE: CVE-2007-4785

CWE: CWE-Other

CVSS Base Score: 6.8/10

Impact Subscore: 6.4/10

Exploitability Subscore: 8.6/10

Exploit range: Remote

Attack complexity: Medium

Authentication: No required

Confidentiality impact: Partial

Integrity impact: Partial

Availability impact: Partial

Hi All,
Apparently Sony cannot learn from their past and have introduced another
rootkit with another of their devices. This time it is their Microvault
USB drive that has fingerprint security.
Have a read of
http://hiltont.blogspot.com/2007/08/sony-rootkit-version-2.html for my
"WHAT!?!?!? You're kidding?" on it and also
http://www.f-secure.com/weblog/archives/archive-082007.html#00001263 for
the original report from F-Secure.
--
Regards,
Hilton Travis Phone: +61 (0)7 3344 3889
(Brisbane, Australia) Phone: +61 (0)419 792 394
Manager, Quark IT http://www.quarkit.com.au
Quark AudioVisual http://www.quarkav.net
War doesn't determine who is right. War determines who is left.
This document and any attachments are for the intended recipient
only. It may contain confidential, privileged or copyright
material which must not be disclosed or distributed.
Quark Group Pty. Ltd.
T/A Quark Automation, Quark AudioVisual, Quark IT

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Sony: The Return Of The Rootkit

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.