PaulDotCom mailing list archives

Re: Embedded Malware

From: Jonathan Cran <jcran () 0x0e org>
Date: Wed, 26 Jan 2011 09:41:40 -0600

On 01/25/2011 01:27 PM, Subba Rao wrote:

His argument is that Malware inside a media file is considered data.
When you play the file, the application treats it like data and it
should not effect the OS.  His argument was not too strong but I need
some information to show that embedded malware can be lethal to the OS.
 Any pointer in this subject area?

GoogleFu provides:

http://secunia.com/advisories/product/3021/?task=advisories
http://www.metasploit.com/modules/exploit/windows/browser/winamp_playlist_unc

Also pdfs are media files. If that doesn't convince, it's a lost cause :).



jcran

-- 
Jonathan Cran
jcran () 0x0e org
515.890.0070

_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com

Current thread:

Embedded Malware Subba Rao (Jan 26)
- Re: Embedded Malware d4ncingd4n (Jan 26)
- Re: Embedded Malware Jonathan Cran (Jan 26)
- Re: Embedded Malware Jim Halfpenny (Jan 26)
- Re: Embedded Malware Michael Salmon (Jan 26)
- Re: Embedded Malware Bruce Barnett (Jan 27)
- <Possible follow-ups>
- Re: Embedded Malware Ryan Sears (Jan 26)