MyCity » Zaštita od zlonamernih programa » BMP format vise nije siguran!

BMP format vise nije siguran!

Napisano na dan: 18.2.2004

BMP format vise nije siguran!

Sledeća strana

Pagination

Zaključano

KAV Distributer Poslao: 18 Feb 2004 10:59 Idi na vrh
offline KAV Distributer Singi SINGI Pridružio: 22 Avg 2003 Poruke: 787 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Computer Underground Pounds Windows Source Codes A new breach is revealed in Microsoft Windows: BMP format is no longer safe Kaspersky Labs, a leading information security software developer warns users about a new vulnerability in Internet Explorer (5.0, 5.5 and 6.0) and Outlook Express 5.0. The new vulnerability allows cyber-criminals launch malicious programs on breached computers using files in BMP format. The vulnerability was discovered by an unknown individual nicknamed 'GTA' and published on several security web sites. The author provided an example of a possible attack and went on to comment that the proposed scenario was based on a detailed analysis of the Windows source code (for details see http://www.kaspersky.com/news.html?id=4016180). "This report confirms our worst fears; the computer underground is pouncing on the Windows source code in search of new attack methods. The speed at which the first discovery appeared forces us to seriously re-evaluate the immediate future of the Internet", comments Eugene Kaspersky, Head of Anti-Virus Research at Kaspersky Labs, "From now on, we can expect similar surprise any minute." The lack of patches for Internet Explorer and Outlook Express make this new vulnerability particularly dangerous. Only users who have Windows XP with Service Pack 1 can relax for now: tests have demonstrated that this configuration is immune. At the same time, the new vulnerability poses a serious threat to all Internet users. It turns out that virus-writers can create BMP files, which load malicious programs onto victim machines while users are looking at images. In fact, infection can occur both while reading e-mail in Outlook and while surfing the web. "At this point in time, we have not detected any viruses that use this exotic new method to attack computers. However, the chances of one appearing in the near future are very real indeed", added Eugene Kaspersky. Kaspersky Labs has already released a special anti-virus database update protecting against malicious programs utilizing this vulnerability. The contents of BMP files are scanned and potentially dangerous objects are detected when they attempts to breach computers via either the Internet or emails. The protection is included in the latest Kaspersky(r) Anti-Virus update. Kaspersky Labs Corporate Communications

Profil
Registruj se da bi učestvovao u diskusiji. Registrovanim korisnicima se NE prikazuju reklame unutar poruka.

AxeZ Poslao: 18 Feb 2004 13:27 Idi na vrh
offline AxeZ Legendarni građanin Pridružio: 17 Apr 2003 Poruke: 3989 Gde živiš: Novi Sad, Vojvodina	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! To je pogresna konstatacija...nije problem u BMP formatu nego u platformi na kojoj se izvrsava.

Profil

mire Poslao: 18 Feb 2004 14:27 Idi na vrh
offline mire Elitni građanin Pridružio: 18 Apr 2003 Poruke: 2282 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! tj. u losim windows programerima koji rade za microsoft ...

Profil

AxeZ Poslao: 18 Feb 2004 17:55 Idi na vrh
offline AxeZ Legendarni građanin Pridružio: 17 Apr 2003 Poruke: 3989 Gde živiš: Novi Sad, Vojvodina	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Upravo tako...): Ja sam inace vec objavio ovu vest ovde sve zajedno sa exploitom... http://www.mycity.rs/phpbb/viewtopic.php?t=3193

Profil

KAV Distributer Poslao: 18 Feb 2004 18:35 Idi na vrh
offline KAV Distributer Singi SINGI Pridružio: 22 Avg 2003 Poruke: 787 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! AxeZ :: Ja sam inace vec objavio ovu vest ovde sve zajedno sa exploitom... http://www.mycity.rs/phpbb/viewtopic.php?t=3193 Upsss...tacno! Izvinjenje zbog dupliranja - opet

Profil

Stane Poslao: 19 Feb 2004 14:12 Idi na vrh
offline Stane Legendarni građanin Pridružio: 13 Jan 2004 Poruke: 3590 Gde živiš: Niš	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Aj sad nek mi neko objasni kako bi ovo trebalo da funkcionise... jer kolko ja znam BMP u sebi ne sadrzi nikakva izvrsni kod (pa samim tim ni virus)... da li to znaci jednu od ove dve stvari: 1) Neko napravi virus, nalepi mu .bmp ekstenziju. IE pokupi fajl i proba da ga prikaze. Haleti na pogresan header i umesto da ga prikaze kao sliku on pokusa da ga startuje kao .exe i aktivira virus 2) Postoji neka nova revizija BMP fajl formata koja u sebi ima mogucnost embedinga nekog script jezika?

Profil

mire Poslao: 19 Feb 2004 14:28 Idi na vrh
offline mire Elitni građanin Pridružio: 18 Apr 2003 Poruke: 2282 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! procitaj axez-ov post, tamo sve pise

Profil

MyCity » Zaštita od zlonamernih programa » BMP format vise nije siguran!

Ko je trenutno na forumu

Ukupno su 814 korisnika na forumu :: 41 registrovanih, 5 sakrivenih i 768 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: aleksmajstor, babaroga, cavatina, ccoogg123, cenejac111, dankisha, Denaya, DPera, GenZee, goxin, Griffon vulture, hatman, hologram, hyla, Karla, ksyyaj, Leonov, Mcdado, mercedesamg, Mercury, milenko crazy north, Milos ZA, MiroslavD, nebkv, NoOneEver Dreams, Rakenica, raketaš, Shinobi, Srle993, stegonosa, theNedjeljko, tubular, vaso1, Vatreni Zmaj, Vlad000, vladulns, wizzardone, YugoSlav, zeo, Zerajic, 1107

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by