Vulnerability Development: Re: Infected jpeg files?

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnerability Development mailing list archives

Re: Infected jpeg files?

From: Blue Boar <BlueBoar () thievco com>
Date: Thu, 08 Nov 2001 23:09:24 -0800

"Chris D. Sloan" wrote:


As with most things where the question is, "Is it possible...?" the
answere is that, yes it is *possible*.  Someone could have written the
viewer to specifically interpret the JPEG contents as an executable.
The particular viewer you are using might overflow its stack and maybe
a carefully constructed JPEG could take advantage of that to run
malicious code.


http://securityfocus.com/bid/1503


Unless the person who wrote your viewer was malicious, though, I would
suspect the threat of anything like this actually happening in the
real world is about as high as the threat that there exist malicious
text files which would cause Notepad to infect other text files.


Wordpad, not Notepad (AFAIK.)

                                        BB

By Date By Thread

Current thread:

Infected jpeg files? rginski (Nov 08)
- Re: Infected jpeg files? Chris D. Sloan (Nov 08)
  - Re: Infected jpeg files? Blue Boar (Nov 09)
- Re: Infected jpeg files? jove (Nov 09)
  - Re: Infected jpeg files? J Edgar Hoover (Nov 09)
  - Message not available
    - Re: Infected jpeg files? HackHawk (Nov 09)
    - Re: Infected jpeg files? Rob Salmond (Nov 10)
    - Re: Infected jpeg files? (viruses) Jonathas Diogenes Castello Branco (Nov 10)