clock menu more-arrow no yes

Filed under:

Some Samsung TVs and Blu-ray players found to have reboot loop vulnerability

New, 3 comments

Some of Samsung's 2010 and 2011 range of TVs and Blu-ray players can be forced into an infinite loop, by exploiting a flaw in the iOS and Android app remote control connection.

Samsung TV box
Samsung TV box

Some Samsung TVs and Blu-ray players from 2010 and 2011 can be forced to enter an infinite loop that even rebooting can't fix, according to Italian researcher Luigi Auriemma. Samsung offers apps for iOS and Android to control some of its network-connected home theater equipment, and uses an authentication system to ensure that other users don't disrupt your TV viewing. However, if the device name field sent by the remote app contains an invalid character or line break, the TV is forced into an endless cycle of rebooting that requires a full reboot via service mode to intervene.

While he has only tested the vulnerability on his Samsung D6000, the long list of compatible devices on the app's Google Play page suggest that the same bug could be widespread. Auriemma found that the authentication packet was sent to the TV via port 55,000, and has posted a proof of concept to his website that can send the rogue packet from any Windows PC. However, since it'd be unusual for someone to forward port 55,000 to their TV, the hacker would most likely need to be on the same network in order to wage an attack.