-
Notifications
You must be signed in to change notification settings - Fork 134
modules smart tv
Modules intended for smart TVs will be stored in this category. To load a module from this category load smart-tv/module.
| Required | Total modules |
|---|---|
| -- | 3 |
The modules are listed below with their description and options to configure.
This module take advantage of the vulnerability that allows to get internal TV files over HTTP without authentication and retrieve Android properties from a Sony TV.
| Option | Required | Description |
|---|---|---|
| rhost | True | Remote host IP |
With this module can exploit the vulnerability that allow to retrieve the static Wi-Fi password (used when the TV is acting as an access point) in Sony Bravia Smart TV by using the Photo Sharing Plus application to execute a backdoor API command.
Sony Bravia Smart TV devices allow remote attackers to retrieve the static Wi-Fi password (used when the TV is acting as an access point) by using the Photo Sharing Plus application to execute a backdoor API command, a different vulnerability than CVE-2019-10886.
| Option | Required | Description |
|---|---|---|
| rhost | True | Remote host IP |
Supra Smart Cloud TV allows remote file inclusion in the openLiveURL function, which allows a local attacker to broadcast fake video without any authentication via a /remote/media_control?action=setUri&uri=URI.
| Option | Required | Description |
|---|---|---|
| rhost | True | Remote host IP |
| uri | True | URL of the video |