Vulnerability Development mailing list archives
Re: Infected jpeg files?
From: Thor () HammerofGod com
Date: Fri, 09 Nov 2001 15:05:10 -0800
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 At 12:18 PM 11/9/2001 -0800, H C wrote:
Got any references for any of these comments? I remember the "Chasing the Wind" series having some mention of embedding JavaScript in the comments fields of GIF files, but (a) that's a fictional series, and (b) I never saw a follow-on installment that addressed the situation.
The only thing that I remember regarding possible exploitation of malformed .jpeg documents was some issue with Netscape in particular... Here is one advisory: http://www.openwall.com/advisories/OW-002-netscape-jpeg.txt And another regarding SuSE: http://www.linuxsecurity.com/advisories/suse_advisory-652.html Of course, googles of "Netscape JPEG" and SF Searches yield lots. HTH AD -----BEGIN PGP SIGNATURE----- Version: PGP 7.1 iQA/AwUBO+xhJohsmyD15h5gEQKrXQCfbDIkK/pxvhD7co1rIIqG0lMwcZkAnjbD wZSpfpTnTTWFlTRlXpxrPAkJ =D9C4 -----END PGP SIGNATURE-----
Current thread:
- Re: Infected jpeg files?, (continued)
- Re: Infected jpeg files? jove (Nov 09)
- Re: Infected jpeg files? J Edgar Hoover (Nov 09)
- Message not available
- Re: Infected jpeg files? HackHawk (Nov 09)
- Re: Infected jpeg files? Rob Salmond (Nov 10)
- Re: Infected jpeg files? (viruses) Jonathas Diogenes Castello Branco (Nov 10)
- Re: Infected jpeg files? Brad (Nov 10)
- Re: Infected jpeg files? jove (Nov 09)
- Re: Infected jpeg files? H C (Nov 09)
- Re: Infected jpeg files? Thor (Nov 09)
- RE: Infected jpeg files? Oliver Petruzel (Nov 09)
- RE: Infected jpeg files? Bruce Ediger (Nov 09)
- Re: Infected jpeg files? Rob Pickering (Nov 09)