PlayStation Now security bugs placed millions of Windows PCs at risk

Jake Guinan December 8, 2020

Sony has remedied a collection of safety bugs identified in the PlayStation Now cloud gaming platform that could have permitted hackers to start assaults on Windows products.

According to safety researcher Parsia Hakimian, these bugs opened the doorway to distant code execution (RCE) when chained with each other, this means the attacker could run any code they pleased on the goal machine.

The vulnerabilities were being 1st reported through the PlayStation bug bounty plan on HackerOne in May perhaps and the entry was marked as settled a person thirty day period afterwards. Hakimian was awarded $fifteen,000 bucks for the disclosure, commensurate with the substantial severity of the vulnerabilities.

PlayStation Now safety bugs

PlayStation Now (or PS Now for limited) is a subscription service that gives Laptop players entry to upwards of seven-hundred video games, including popular titles released solely on PlayStation. The service has amassed more than two million subscribers due to the fact it launched in 2014.

As mentioned in the HackerOne entry, the safety bugs in issue influenced PlayStation Now model 11..two and previously, set up on computers jogging Windows seven SP1 or more recent.

The safety gap is the products of three different issues which, when put together, permitted internet sites loaded in any browser on the vulnerable machine to run code by way of a “vulnerable websocket link.”

To execute the assault, hackers would have had to deceive PS Now consumers into opening a malicious website link, perhaps dispersed through a phishing e-mail. Scripts on the rigged website would then hook up to the nearby WebSocket server and load malicious code from an additional web page, right before jogging it on the machine.

The extent to which the issues were being exploited though lively (if at all) is unfamiliar, but the vulnerabilities in issue have lengthy due to the fact been patched, this means no additional motion is required of PS Now subscribers.

Through Bleeping Laptop

More Stories

How AI Is Empowering Small Businesses in the US

How AI Is Empowering Small Businesses in the US

Jake Guinan April 22, 2025
How 5G Is Supercharging AI in the US

How 5G Is Supercharging AI in the US

Jake Guinan April 22, 2025
AWS Welding Certification – The AWS Welder Program – Is it Working?

AWS Welding Certification – The AWS Welder Program – Is it Working?

Jake Guinan July 15, 2024 0

You may have missed

How AI Is Empowering Small Businesses in the US

How AI Is Empowering Small Businesses in the US

Jake Guinan April 22, 2025
How 5G Is Supercharging AI in the US

How 5G Is Supercharging AI in the US

Jake Guinan April 22, 2025
xTool: Revolutionising Laser Engraving and Precision Fabrication Technologies

xTool: Revolutionising Laser Engraving and Precision Fabrication Technologies

Jake Guinan March 25, 2025
Unsichtbare Spuren: Wie Saugroboter ohne Rückstände reinigen

Unsichtbare Spuren: Wie Saugroboter ohne Rückstände reinigen

Jake Guinan March 14, 2025
Comprehensive Guide to Hotshot Services and Australia-Wide Freight: Modern Logistics Solutions

Comprehensive Guide to Hotshot Services and Australia-Wide Freight: Modern Logistics Solutions

Jake Guinan March 3, 2025