PaulDotCom mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Embedded Malware

From: d4ncingd4n () gmail com
Date: Wed, 26 Jan 2011 15:42:20 +0000
There are quite a few resources on the subject. Http://www.exploit-db.com has a great deal of info. Also you can google 
"file format vulnerabilities" and "file format fuzzers" file format vulns are a juicy target since 
Patching third party apps are often overlooked. 

Hope that helps 

Bart
Sent from my Verizon Wireless BlackBerry

-----Original Message-----
From: Subba Rao <kleanchap () tanucoo com>
Sender: pauldotcom-bounces () mail pauldotcom com
Date: Tue, 25 Jan 2011 20:27:48 
To: Pauldotcom<pauldotcom () mail pauldotcom com>
Reply-To: PaulDotCom Security Weekly Mailing List
        <pauldotcom () mail pauldotcom com>
Subject: [Pauldotcom] Embedded Malware

I am having a serious discussion with one of my colleagues about
embedded Malware.  In our discussions, I have told him about about
Malware in AVI and other media files which get spread from P2P networks
etc.

His argument is that Malware inside a media file is considered data.
When you play the file, the application treats it like data and it
should not effect the OS.  His argument was not too strong but I need
some information to show that embedded malware can be lethal to the OS.
 Any pointer in this subject area?

Thank you in advance.

Subba Rao
_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com
_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com
Previous By Date Next
Previous By Thread Next

Current thread: