Google Groups Home
Help | Sign in
alt.spam
+ new post
About this group
Subscribe to this group
This is a Usenet group - learn more
Message from discussion Nonsense Spam
The group you are posting to is a Usenet group. Messages posted to this group will make your email address visible to anyone on the Internet.
Your reply message has not been sent.
Your post was successful
 
From:
To:
Cc:
Followup To:
Add Cc | Add Followup-to | Edit Subject
Subject:
Validation:
For verification purposes please type the characters you see in the picture below or the numbers you hear by clicking the accessibility icon. Listen and type the numbers you hear
 
Mike Easter  
View profile  
 More options Nov 17 2005, 10:14 am
Newsgroups: alt.spam
From: "Mike Easter" <Mi...@ster.invalid>
Date: Thu, 17 Nov 2005 15:14:15 GMT
Local: Thurs, Nov 17 2005 10:14 am
Subject: Re: Nonsense Spam
Reply to author | Forward | Print | View thread | Show original | Report this message | Find messages by this author

PCBoy wrote:
> Is it the GIF per se,

The gif itself is 'contaminated'...

> or is it one of these sideways attacks ,where
> the gif gets stored in the cache renamed and executed but a security
> flaw is say HTML and IE.

... but it has to be handled in a vulnerable sort of way....

>  In which case I am safe because I would open the
> suspect gif with gimp.

... and the published vulnerabilties have been best/most explained in
Windows apps, but not just IE rendering.

Two useful things to read are the expanded vulnerability details in this
MS security bulletin covering .bmp and .gif
http://www.microsoft.com/technet/security/bulletin/MS04-025.mspx
Cumulative Security Update for Internet Explorer

and this very specific description of how the Win app SpeakFreely's
vulnerability works
http://www.derkeiler.com/Mailing-Lists/Securiteam/2003-09/0081.html
SpeakFreely Malformed GIF Vulnerability

SpeakFreely is a very very ancient VoIP opensource app, so its open
source condition permitted a close investigation of an aspect of the
vulnerability.  That link gives you sufficient information for crafting
a .gif which will crash the app and using Luigi Auriemma's
linux or win tool Custom GIF creator 0.1 and links to that tool.

There have been linux apps with different kinds of malformed .gif/s.
http://www.net-security.org/vulnerability.php?id=20471  libungif/giflib
Crafted .gif File Arbitrary Code Execution  -  When a program using
libungif opens a specially crafted GIF file, an attacker may be able to
cause arbitrary code execution, resulting in a loss of integrity.

That linux bug information from Nov 5 has a bunch of stuff at RedHat to
read about if you follow the links at net-security.

--
Mike Easter


    Reply to author    Forward  
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
Create a group - Google Groups - Google Home - Terms of Service - Privacy Policy
©2009 Google