Two Vulnerabilities In Blue-Ray Allows Easy Computer Compromise

The British hacker Stephen Tomkinson has posted on the NCC Blog that a hostile actor can make a special Blue-Ray disk, put it in a computer with a Blue-Ray drive, and run any executable on the disk. The two exploits allow for a hostile actor to attack a Blue-ray system without detection. There are no patches for these vulnerabilities.

The first culprit is Cyberlink’s PowerDVD software that uses Java that has not been updated since about 2009. The second is the Blue-ray drive. The second attack, based on earlier research by Malcom Stagg to remove anti-piracy software Cinavia, takes the data streaming from the physical disk and injects hostile code.

Link to the NCC Blog: https://www.nccgroup.com/en/blog/2015/02/abusing-blu-ray-players-pt-1-sandbox-escapes/

Post by Protocol 46