Sunday, December 11, 2016
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Apple AirPods Will Miss Holiday Season
Japan Display To Receive ¥50 bil. Support From Government
Google Said to Bring Internet To Cubans
Super Mario Run Won't Play Offline
U.S. Confirms Samsung and LG Dumped Washers
Xiaomi Electric Vehicle Launch on Monday, Yeelight LED Ceiling Light Launched
Hon Hai, Sharp To Build Massive LCD TV Plant In China
U.S. To Review Cyber Attacks Beyond 2016 Election
Active Discussions
Which of these DVD media are the best, most durable?
How to back up a PS2 DL game
Copy a protected DVD?
roxio issues with xp pro
Help make DVDInfoPro better with dvdinfomantis!!!
menu making
Optiarc AD-7260S review
cdrw trouble
 Home > News > General Computing > Exploit...
Last 7 Days News : SU MO TU WE TH FR SA All News

Thursday, September 23, 2004
Exploit posted for Microsoft JPEG flaw


Computer code that takes advantage of a flaw in the way many Microsoft applications process JPEG images has been published on the Internet and could be a precursor to actual attacks on vulnerable PCs, experts said.

The code was published late last week, only days after Microsoft revealed the "critical" vulnerability and made available patches to fix the problem. Any application that processes JPEG images could be vulnerable. A wide range of Microsoft software, including versions of its Windows and Office products, are vulnerable.

So far only "proof-of-concept" code has been published, which can cause a vulnerable Web browser to crash or a PC to freeze. A fully developed exploit would allow an attacker to take control of a victim's computer by remotely opening a command prompt or downloading and running malicious software, one expert.

"Typically a proof of concept is a first step towards a full blown exploit," said Johannes Ullrich, chief technology officer at The SANS Institute's Internet Storm Center. "It is an indication that people are playing with it and experimenting to try and get it to work for other purposes, typically to open a remote shell or download and execute code."

Microsoft is aware of the exploit code and is investigating the matter, a company spokeswoman said. "Microsoft?s early investigation of this code indicates that it can cause a computer that does not have (the patches) installed to stop responding, but it does not execute code remotely," she said.

Microsoft urges all customers to immediately install the software updates it made available with Security Bulletin MS04-028. Customers who are still testing the patches should implement the workaround steps outlined in the bulletin, Microsoft said.

The pattern to exploitation of the JPEG vulnerability is not much different than with other vulnerabilities, according to the SANS Institute's Internet Storm Center. Typically proof-of-concept code is published a few days after details of the flaw are released followed by a hunt to fully exploit the flaw. A worm or mass mailer is likely to surface by the end of the month, according to the organization's Web site.

While the race is on to create malicious code and there seems to be a real possibility for large scale exploitation of the JPEG processing weakness, Ullrich has some hope that it won't be.

"One thing that makes me think that this may not be this big is that these image format vulnerabilities, there are literally dozens of them, and for whatever reason they have not been widely exploited in the past," he said.

To take advantage of the flaw, an attacker would have to persuade a user to open a specially crafted image file. The image could be hosted on a Web site, included in an e-mail or Office document or hosted on a local network, Microsoft said last week.

The vendor rates the flaw "important' for many of its products, but "critical" for Outlook versions 2002 and 2003, Internet Explorer 6 with Service Pack 1, Windows XP and Windows XP with Service Pack 1, Windows Server 2003, and the .Net Framework 1.0 with Service Pack 2 and .Net Framework 1.1.

In Microsoft's rating system for security issues, vulnerabilities that could allow a malicious Internet worm to spread without any action required on the part of the user are rated critical. Issues that do require a user action to spread a worm, but could still expose user data or threaten system resources, are rated important.

More information on the JPEG flaw is available at: http://www.microsoft.com/technet/security/bulletin/ms04-028.mspx

From DIGIT



Previous
Next
Fujifilm FinePix S3 Pro: the digital SLR that's tuned for image quality        All News        Acer to sell Foxconn and BenQ shares
Google to fight Microsoft with own browser?     General Computing News      Acer to sell Foxconn and BenQ shares

Source Link Get RSS feed Easy Print E-Mail this Message

Related News
European Commission Approves Acquisition of LinkedIn by Microsoft, Subject to Conditions
Microsoft Is Careful With New Chatbot Zo, Now Available For Testing
Microsoft Offers Grants to Organizations Working to Improve Affordable Internet Access
Microsoft Wants To Bring Something Different in The Smartphone Market
Microsoft's Solitaire Game Now Available On iOS And Android
Microsoft Joins The Linux Foundation, Google Embraces The .NET community
Microsoft Buys 237 Additional Megawatts of Wind Energy
Microsoft Introduces Chat-based Workspace in Office 365
Microsoft Identifies Russia-linked Hackers Exploiting Windows Flaw
Microsoft Researchers Reach Human Parity in Conversational Speech Recognition
Microsoft Cloud Strength Highlights First Quarter Results
Microsoft's Cloud Investments In Europe Hits $3 billion

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2016 - All rights reserved -
Privacy policy - Contact Us .