today I had became member of Sony’s “Hall of Thanks” for reporting a RCE via MITM in PCCompanion. I was able to verify that the issue is not relevant anymore. Although they haven’t switched to https, they execute now additional signature checks which prevent the attack.
So far so good!
Unfortunately I discovered another issue which allows again a RCE via MITM. Lets see how fast they react this.
PCCompanion is really a lousy piece of software I have to admit…I’m sure it won’t be the last security related bug I will find…
If I find some time I will publish a small paper about the first issue.
mitp0sh of [PDX]