Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Full-Disclosure] 2 vulnerabilities combine to auto execute received

from [Anders Langworthy] Network Security [Permanent Link]
Subject: Re: [Full-Disclosure] 2 vulnerabilities combine to auto execute received files in Nokia series 60 OS
Date: Mon, 24 Jan 2005 14:17:55 -0600
Paul Kurczaba wrote: 
Wouldn't the phone try to open the jpg file as a picture, and not execute
it. Just like on desktop PCs: if you rename a .exe (application/program) to
a jpg (picture file), and try to open the file, your image program will open
the file, thinking it is a image file. The application code will not be
executed.

Ideally, yes. But as demonstrated by the Microsoft GDI exploit, just because a file is not executed proper doesn't necessarily mean it's safe from problems in the underlying application.

I'd still say that this isn't really a problem directly (after all, it's considered "safe" to view a webpage with images that are loaded without prompting), but the fact that attachments are automagically loaded does provide a spectacular way to automatically infect a large amount of phones if somebody were to come up with a way to payload an attachment.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Full-Disclosure] SECURITY.NNOV: Multiple applications fd_set structure bitmap array index overflow, 3APA3A
Next by Date:  [Full-Disclosure] Local buffer-overflow in W32Dasm 8.93, Luigi Auriemma
Previous by Thread:  RE: [Full-Disclosure] 2 vulnerabilities combine to auto execute received files in Nokia series 60 OS, Paul Kurczaba
Next by Thread:  [Full-Disclosure] [USN-68-1] enscript vulnerabilities, Martin Pitt
Indexes:  [Date] [Thread] [Top] [All Lists]