Vulnerability Development: RE: Infected jpeg files?

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnerability Development mailing list archives

RE: Infected jpeg files?

From: "Bruce Ediger" <eballen1 () qwest net>
Date: Fri, 9 Nov 2001 08:30:38 -0700 (MST)

On Thu, 8 Nov 2001, OBrien, Brennan wrote:

Given that images are a major way of transmitting encoded data, it
stands to reason that the hooks could exist  -- that is, it could be a
transport mechanism.  However, the viewer itself would have to know to


The view that "internet images transmit encoded data" is thoroughly
discredited:  see http://www.theregister.co.uk/content/archive/21829.html

Some researchers examined two million images from eBay, and found not a
single image containing steganographically encoded data. Primary source:
http://www.citi.umich.edu/techreports/reports/citi-tr-01-11.pdf

But that's neither here nor there in the context of whether the dopey IE
warning about viruses in images is correct.

By Date By Thread

Current thread:

Re: Infected jpeg files?, (continued)
- Re: Infected jpeg files? terry white (Nov 09)
  - Re: Infected jpeg files? H C (Nov 09)
    - Re: Infected jpeg files? Thor (Nov 09)
- RE: Infected jpeg files? OBrien, Brennan (Nov 08)
  - RE: Infected jpeg files? Oliver Petruzel (Nov 09)
  - RE: Infected jpeg files? Bruce Ediger (Nov 09)
- RE: Infected jpeg files? Chan, Stephen (TIS, Singapore) (Nov 09)
- RE: Infected jpeg files? OBrien, Brennan (Nov 09)
- RE: Infected jpeg files? Krul Thomas (Nov 09)
  - Re: Infected jpeg files? Rob Pickering (Nov 09)
- Re: Infected jpeg files? zen-parse (Nov 09)