| Re: Dragon Torch [message #80739] |
Sa, 16 Juli 2005 23:10 |
|
On Sat, 16 Jul 2005 18:58:21 GMT
Lord Flame Stryke <FlameStryke [at] gmail.com> wrote:
> Um..... This is an image..... Viruses can't exist in images, they're
> executable code, and images are never executed. You must have gortten
> your virus from something else, unless there was another attachment I
> didn't get.....
Actually, you can put a virus in an image - its just binary data.
the trick is getting it executed - which would require you to find something like a buffer overflow in the decoder and craft a special JPEG that can trigger it and use that to get your code executed...
|
|
|
| Re: Dragon Torch [message #80744 ] |
So, 17 Juli 2005 05:31 |
|
On Sat, 16 Jul 2005 22:10:01 +0100, pocketdragon [at] f2s.com wrote:
>On Sat, 16 Jul 2005 18:58:21 GMT
>Lord Flame Stryke <FlameStryke [at] gmail.com> wrote:
>
>> Um..... This is an image..... Viruses can't exist in images, they're
>> executable code, and images are never executed. You must have gortten
>> your virus from something else, unless there was another attachment I
>> didn't get.....
>
>Actually, you can put a virus in an image - its just binary data.
>
>the trick is getting it executed - which would require you to find something like a buffer overflow in the decoder and craft a special JPEG that can trigger it and use that to get your code executed...
If anybody still has an unpatched GDI they deserve to get a sick
computer...
--
Vincent
DC2.D Gm L W- T- Phwalt Skh Cta,bta+ Bco/fl A Fr++ Nn
M O H--- Fo R+++! Ac+ J+ S? I---# V? Q? Tc++[Technition] E+
Keeper of The Great Book of Random Stuff
www.dragonbathhouse.com
v_dragon [at] bellsouth.net
Up the Irons!
---------------------------
Scouting- Because Character counts
Duke of Dutch Ovens [DoDo]
dragonbathhouse.150m.com/klah/dutchovenfaq.htm
<'cause few know what a dutch oven is>
Priest in charge of the pastries
---------------------------
"The tears of a Dragon,
For you and for me."
-Bruce Dickinson
|
|
|
| Re: Dragon Torch [message #80766 ] |
Mo, 18 Juli 2005 02:00 |
|
v_dragon wrote:
> On Sat, 16 Jul 2005 22:10:01 +0100, pocketdragon [at] f2s.com wrote:
>
> > On Sat, 16 Jul 2005 18:58:21 GMT
> >Lord Flame Stryke <FlameStryke [at] gmail.com> wrote:
> >
> >> Um..... This is an image..... Viruses can't exist in images,
> they're >> executable code, and images are never executed. You must
> have gortten >> your virus from something else, unless there was
> another attachment I >> didn't get.....
> >
> > Actually, you can put a virus in an image - its just binary data.
> >
> > the trick is getting it executed - which would require you to find
> > something like a buffer overflow in the decoder and craft a special
> > JPEG that can trigger it and use that to get your code executed...
>
> If anybody still has an unpatched GDI they deserve to get a sick
> computer...
There was a relatively recent proof of concept datafile virus done
about a year (?) ago. Technique never got released to the public, but
you know the illegal type of hackers - if it can be done....
Just a Monkey,
Scott,
--
Visit me at http://4dw.net/moonfriend/index.html
Find the KMG (KY/Midwest Gather) at http://www.wertle.com/midwest.html
|
|
|
| Re: Dragon Torch [message #83364 ] |
Di, 19 Juli 2005 07:59 |
|
At Mon, 18 Jul 2005 00:00:33 GMT, "Scott L" <spamtrap644 [at] insightbb.com>
hissed:
> v_dragon wrote:
>
>> On Sat, 16 Jul 2005 22:10:01 +0100, pocketdragon [at] f2s.com wrote:
>>
>> > On Sat, 16 Jul 2005 18:58:21 GMT
>> >Lord Flame Stryke <FlameStryke [at] gmail.com> wrote:
>> >
>> >> Um..... This is an image..... Viruses can't exist in images,
>> they're >> executable code, and images are never executed. You must
>> have gortten >> your virus from something else, unless there was
>> another attachment I >> didn't get.....
>> >
>> > Actually, you can put a virus in an image - its just binary data.
>> >
>> > the trick is getting it executed - which would require you to find
>> > something like a buffer overflow in the decoder and craft a special
>> > JPEG that can trigger it and use that to get your code executed...
>>
>> If anybody still has an unpatched GDI they deserve to get a sick
>> computer...
>
> There was a relatively recent proof of concept datafile virus done
> about a year (?) ago. Technique never got released to the public, but
> you know the illegal type of hackers - if it can be done....
"Trojan.Moo":
http://securityresponse.symantec.com/avcenter/venc/data/troj an.moo.html
the vulnerability:
http://www.microsoft.com/technet/security/bulletin/ms04-028. mspx
--
Pyros Rutilicus
---------------
DC2.Dw~ Gm L40f75w W- T- Sks,wl Cre-,eau Bfl A Fr++ Nm R+ Ac++ J+ Tc++ E-
Proud Owner of One Ponder Point
Scales protect many times better than flesh, but ironically, as long as
I wear this flesh I am safe, whereas if I were to show my true self I
would be vulnerable...
"Thoughts of [an annoying human] still make my teeth itch."
--D. J. Heinrich, The Dragon's Tomb
|
|
|
