| We hope you enjoy your visit. You're currently viewing our forum as a guest. This means you are limited to certain areas of the board and there are some features you can't use. If you join our community, you'll be able to access member-only sections, and use many member-only features such as customizing your profile, sending personal messages, and voting in polls. Registration is simple, fast, and completely free. Join our community! If you're already a member please log in to your account to access all of our features: |
- Pages:
- 1
- 2
| Huge Security Risk; mods this should be in announcements | |
|---|---|
| Tweet Topic Started: Jan 3 2006, 09:21 PM (1,245 Views) | |
| x_spoonman_X | Jan 3 2006, 09:21 PM Post #1 |
|
Runescaper
![]() ![]() ![]()
|
A new vulnerability has appeared recently that allows dangerous files to be put in image files. Microsoft is currently working to fix this problem - they would not, however, say if they would have the problem fixed by January 10th, 2006. Here are some news items: http://www.finfacts.com/irelandbusinessnew..._10004361.shtml http://www.bangkokpost.com/breaking_news/b...ws.php?id=70706 http://www.microsoft.com/technet/security/...ory/912840.mspx http://abcnews.go.com/Technology/wireStory?id=1466500 http://money.cnn.com/2006/01/03/technology...dex.htm?cnn=yes Quote: "Huge virus threat rocks Microsoft Report says a newly discovered flaw could expose hundreds of millions of Windows PCs to virus. January 3, 2006: 11:08 AM EST NEW YORK (CNNMoney.) - The new year is off to a rocky start at Microsoft, where security experts are scrambling to confront a potentially massive virus threat to Windows PCs. According to a report Tuesday in the Financial Times, the latest vulnerability involves a flaw which allows hackers to infect computers using programs inserted into image files. The threat was discovered last week. But it mushroomed over the weekend, when a group of hackers published the source code they used to exploit the flaw. What makes this threat particularly vicious, according to the Times, is that unwitting victims can infect their computers simply by viewing a web page, e-mail, or instant message that includes a contaminated image. That differs from most virus attacks, which require a user to actually download an infected file. "The potential [security threat] is huge," Mikko Hypponen, chief research officer at F-Secure, an antivirus company, told the Times. "It's probably bigger than for any other vulnerability we've seen. "Any version of Windows is vulnerable right now," said Mr. Hypponen, including every Windows system shipped since 1990. Microsoft (Research) said in a security bulletin on its Web site, "we are working closely with our antivirus partners and aiding law enforcement in its investigation." Quote: The infected files are saved in the Windows Metafile (WMF) format, but can be labeled as standard JPEG and GIF files, the most common type of images found in webpages and e-mails. The hackers use the entry point to install hidden programs that can launch pop-up ads or steal passwords and other sensitive information. Schmugar says that while the threat is very real, it's contained up to now by the fact that only a small group of websites, well off the beaten path of most surfers, contain the malicious code. "The chances of you going to one of these sites is pretty low," he says, adding, "We're not aware of a mass spamming of this exploit at this time." Still, he cautions, anything could happen. "We'll just have to wait and see." Quote: The flaw will actually install ON ITS OWN if you are using Internet Explorer. That's why it's such a critical flaw. If you are using FireFox you get a popup asking you if you want to run the script found in the image file. It's still possible to be infected with FireFox too, you just have to click an "ok" button for it to happen. i suggest you all disable posting of images and avatars and sigs until this risk is resolved. you dont want someone on your forum hacking everyone else. |
![]() |
|
| Stephen | Jan 3 2006, 09:25 PM Post #2 |
|
Twilight is upon me, and soon night must fall.
![]()
|
Moved to Community Chat |
![]() |
|
| Quality Poster | Jan 3 2006, 09:29 PM Post #3 |
|
Member
![]() ![]() ![]() ![]() ![]()
|
HOLY mullet! F.Y.I. We have Word filters please do not get around them thanks[/b]EDIT: Honestly, who says holy mullet....lol |
![]() |
|
| Pc_loadletter | Jan 3 2006, 09:30 PM Post #4 |
![]()
empty
![]() ![]() ![]() ![]() ![]() ![]() ![]()
|
Sooo.... what do we have to do? That does require such long reading? |
![]() |
|
| x_spoonman_X | Jan 3 2006, 09:31 PM Post #5 |
|
Runescaper
![]() ![]() ![]()
|
just disable avatars and dont allow image posting until this flaw is fixed. disable images in sigs aswell which im not sure how to do. |
![]() |
|
| Stephen | Jan 3 2006, 09:33 PM Post #6 |
|
Twilight is upon me, and soon night must fall.
![]()
|
Or get firefox and not click ok
|
![]() |
|
| Pc_loadletter | Jan 3 2006, 09:37 PM Post #7 |
![]()
empty
![]() ![]() ![]() ![]() ![]() ![]() ![]()
|
You could have just posted that. :rolleyes: |
![]() |
|
| Toa Lhikan | Jan 3 2006, 09:40 PM Post #8 |
|
Member
![]() ![]() ![]() ![]()
|
Just don't use IE and if you are really worried, unregister the Windows Picture and Fax Viewer or install the hotfix from SANS. I don't know if the hotfix from SANS works or not, but if you want to use it, go ahead. To unregister Windows Picture and Fax Viewer follow these steps:
Microsoft says that they will release a patch on January 10. I believe that using an alternate browser and being careful about what you view is enough to protect your computer. |
![]() |
|
| volksdevil | Jan 3 2006, 09:43 PM Post #9 |
![]()
Volkswagen/Audi nutter!
![]() ![]() ![]() ![]() ![]() ![]()
|
wow :unsure: ok,how do we totally disable signatures and images on our forums? thanks. |
![]() |
|
| Jimi | Jan 3 2006, 09:44 PM Post #10 |
|
LOST
![]() ![]() ![]() ![]() ![]() ![]() ![]()
|
Ah yes, this sounds like a good plan.
|
![]() |
|
| x_spoonman_X | Jan 3 2006, 09:48 PM Post #11 |
|
Runescaper
![]() ![]() ![]()
|
well yes obviously if your reading this use firefox. but what about the members of your forums that dont. im telling you to remove the images avas and sigs to protect them. im sure atleast 50% of forums have 1 or more malicious users that may try to use this flaw to their advantage by using an infected image in their avatar or post one. sure if you read this and use firefox your fine but im sure many of your members will be using ie view that image and get infected. as admins its your duty to protect your members |
![]() |
|
| .Day | Jan 3 2006, 10:09 PM Post #12 |
![]()
Look at my sig
![]() ![]() ![]() ![]()
|
thanks for posting |
![]() |
|
| rJay | Jan 3 2006, 10:37 PM Post #13 |
|
Member
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]()
|
rJays not afraid! |
![]() |
|
| Placeholderplaceholder | Jan 3 2006, 10:55 PM Post #14 |
|
Quit
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]()
|
Hmm sounds serious. Good thing im usin FF!! |
![]() |
|
| Deltasix | Jan 3 2006, 10:58 PM Post #15 |
![]()
Me
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]()
|
Is it the same as this: http://support.invisionfree.com/index.php?...opic=214778&hl= ? |
![]() |
|
| 1 user reading this topic (1 Guest and 0 Anonymous) | |
| Go to Next Page | |
| « Previous Topic · Community Chat · Next Topic » |
- Pages:
- 1
- 2
| Track Topic · E-mail Topic |
4:29 AM Jul 11
|



![]](http://b1.ifrm.com/0/1/0/p601690/pipright.png)




thanks



4:29 AM Jul 11