Skip to Content

FYI : Exploit For Windows JPEG Bug

7 replies [Last post]
Zzzzz
Zzzzz's picture
Offline
Joined: 06/20/2008

Just wanted to let people know about the new jpeg issue and the potential for it to be used for a new batch of viruses.

Take a look at www.slashdot.com and the site has an articale about the problem. Just look for "Exploit For Windows JPEG Bug" on the main page if you want to know more.

Aerjen
Offline
Joined: 08/28/2008
FYI : Exploit For Windows JPEG Bug

I thought this was a flaw only to be exploited in WinXP, wasn't it?

Zzzzz
Zzzzz's picture
Offline
Joined: 06/20/2008
FYI : Exploit For Windows JPEG Bug

From CNET

Quote:
The flaw affects various versions of at least a dozen Microsoft software applications and operating systems, including Windows XP, Windows Server 2003, Office XP, Office 2003, Internet Explorer 6 Service Pack 1, Project, Visio, Picture It and Digital Image Pro.

Not sure about other windows platforms, but if you can put IE6 on it, it might be at risk.....

rkalajian
Offline
Joined: 12/31/1969
FYI : Exploit For Windows JPEG Bug

Makes me pretty glad to be using linux :)

Seriously though...I wonder why people still tolerate Windows with all it's security flaws and faulty software. I know most software is developed for it, but something really needs to change.

Making the switch to linux or even OSX has never been easier, although switching to OSX is a little tougher with Apple's high hardware costs.

Zzzzz
Zzzzz's picture
Offline
Joined: 06/20/2008
FYI : Exploit For Windows JPEG Bug

Yeah I am not sure why people keep supporting Microsoft when all these issues are just so annoying, but the platform has so much advantage when it comes to "entertainment" support. And a large part of the population seeks the entertainment.

As for me, I have to develop on Windows, Linux/Unix and OSX, so as a result of my job I have to work on windows.

As a side note, the reason I posted this on BGDF was to alert everyone, since we can all post urls to images and if you view them in IE, dont complain to BGDF! Because I warned YOU!

RookieDesign
Offline
Joined: 12/31/1969
FYI : Exploit For Windows JPEG Bug

rkalajian wrote:
Makes me pretty glad to be using linux :)

Look like this one is for Unix and Mac too. Read the trail a bit. It look like an error in the PNG library cause the problem. This library is part of all the OS.

I guess the effet on Linux and OS X is diminish to only a crash of application.

FastLearner
Offline
Joined: 12/31/1969
FYI : Exploit For Windows JPEG Bug

Running Windows Update will fix the problem.

While WinXP is most vulnerable (because it's got the GDI+ bug built-in), if you're running the latest versions of Office, if you have the .Net libraries installed, and several other things will make you vulnerable, too.

The download is super-quick (it's a small download) and it can tell instantly if you're vulnerable. If you are then it downloads some bigger stuff, but the fix is still pretty small overall.

-- Matthew

rkalajian
Offline
Joined: 12/31/1969
FYI : Exploit For Windows JPEG Bug

RookieDesign wrote:
Look like this one is for Unix and Mac too.

Well poo... :)

Syndicate content


forum | by Dr. Radut