Smart TVs selling under SUPRA brand-name have been found vulnerable to an unpatched remote file inclusion vulnerability that could allow WLAN attackers to broadcast fake videos to the television screen without any authentication with the television.
SUPRA is a least known Russia electronics brand on the Internet that manufactures several affordable audio-video equipments, household appliances and car electronics, most of which are being distributed through Russian, Chinese, Russian and UAE-based e-commerce websites.
When A legit user is watching some action movie, and attackers trigger the remote file inclusion vulnerability at the same time, so the attacker would have full control over the TV, and he can broadcast anything,
Though the requirement of attackers access to victim's WLAN network by default limits the threat to higher extent
Though the vulnerability has been given a CVE ID, it is unlikely to be patched. So, users who own a Supra Smart Cloud TV can't do more than keeping their WLAN network secure like setting a strong password, avoid sharing WLAN password with untrusted and unauthorized people and keeping other smart devices behind a firewall or off the Internet that are connected to the same network .
Today's deal
Are you looking for a great and budget laptop?Buy ASUS X507 Core i5 - 8th Gen 15.6" FHD Thin and Light Laptop (8GB/1TB HDD/Windows 10/2GB MX130/Icicle Gold/1.6 kg), X507UF- EJ101T from Amazon. Click here to buy - https://amzn.to/2ERjvWI
Comments