is possible to exploit firmware with crafted .png
my firmware t-valdeuc 3011.0 have this vulnerability in libpngGP.so and libKonfabulator.so
maybe possible vulnerability in E firmware
The hard part is to actually craft a file (at least for us now...)
Even when we found the exploit and know how to trigger it, we still don't know what kind of crafted file you must put and where it actually crashes...
Need more experts on this field.
i am working on vulnerable .png which crash libpng -> no exploit for now -> i think i could do that because we have souce code of libpng and possible dump of C,D,E firmware , hard part is only write exploit , i am not so skilled in that as my tv is already rooted i am only interested about
i agree, we need more experts on this