Many 200 Mb/s powerline adapters nowadays are based on the INTELLON 6300 chipset. Despite what can be thought looking at them, they are all using the same hardware and firmwares. I heard many people with Netgear XAV101 or Linksys PLK 200 or PLE 200 having problems after firmware updates and many other people with other brands having much more problems because of lack of support or configuration/upgrade utilities. So let me explain a few things I learnt studying them. Many of 200 Mb/s powerline ethernet adapters follow the "HomePlug AV" standard. (85 Mb adapters use HomePlug 1.0 standard which is completely different). This standard uses ethernet broadcast packets using the HomePlug AV protocol. The interesting thing is that their firmware is made of two different parts: a .PIB file (Parameter Information Block) and a .NVM file (the code itself). In the P.I.B. there are many interesting things: The branding (mac address, device name, etc) and the tone map. I test
:) So now we also play with video/sound.
ReplyDeleteactually it's fun to hear that a video can crash a device that is meant to play music/videos. playing the bootloader made some ipods crash. my question is: is this exploit usable?
ps: you found this exploit accidentally, didn't you :P
It was first found accidentally... then it grew up... a different video of the same kind can even crash VLC (videolan) and all programs using the same libraries (believe me they are a lot)
ReplyDeletemedia players have 2 versions:
ReplyDeletethe ones writing directly to the outputdevice
the ones that send the info to another module
(this is a design choice)
is the crash about a file that the outputdevice can't play? (probably not)
is there any way you want to explain me how this works?( without making it public)
btw vlc can crash so often :-)
forgot to say
ReplyDeletei'm a linux user so yeah i know how many apps can share the same libraries.
actually i looked up the dependencies of vlc and saw a huge list. i don't think i'll list them here :)
Hmm.. put the video back up, please?
ReplyDeleteVideo back up, please!!!
ReplyDeleteThe video will be up soon.
ReplyDeleteJust not now.
Stay tuned.
Have any eta for having it back up?
ReplyDelete[...]
ReplyDeleteWhy not now?
It depends on Apple.
ReplyDeleteI'm in the talks with them.
I'll keep you posted.
Thanks! I hope to try this out! It seems like a (possibly) cool exploit!
ReplyDeleteZibri... the Bad-people can use this Bug to do Bad - things?? xD
ReplyDeleteIf you you understend me!
Ty