Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: FAX a virus

from [Scott Ramsdell] Network Security [Permanent Link]
Subject: RE: FAX a virus
Date: Thu, 1 Mar 2007 14:33:52 -0500 
Alcides,

Others on this list, and especially on the Pen Test list, can speak much
more suitably than I can on this issue, but I will contribute the
following.

This depends entirely on how the input to the "document processing
system" is sanitized.  If the document processing system blindly accepts
user input as valid, then you potentially have an issue.

If the document processing system runs as a service on your Windows
boxes, check to ensure that it launches with an account that does not
have System or Admin rights on the box.  

Kind Regards,
Scott Ramsdell

-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com]
On Behalf Of Alcides
Sent: Wednesday, February 28, 2007 10:37 PM
To: security-basics@securityfocus.com
Subject: FAX a virus

Hi lists,
My FAX server allows me to receive faxes from my clients from Internet.
My clients send me some documents using their built-in Fax Printer on 
their PC. My fax server routes the stuff to the document processing 
applications. The document processing system extracts various data 
fields from received portable document format files.
The whole scenario is windows environment and let's assume that virus 
protection is temporarily off.

Now, I have a query:
Can anyone send a fax that includes a file infected with the virus/ worm

operates as a VBS script embedded within a PDF/TIF file to cause 
infections to my computers/ to affect my FAX system?
What about other possibilities of "the bad guys" using some joiner (or 
wrapper as some say) to bind malware (trojan server etc) with the pdf/ 
TIF files and fax it to me?
I would be very greatful to know what are the various possibilities.

Warm regards,
Alcides.

------------------------------------------------------------------------
---
This list is sponsored by: BigFix

If your IT fails, you're out of business - or worse.  Arm your 
enterprise with BigFix, the single converged IT security and operations 
engine. BigFix enables continuous discovery, assessment, remediation, 
and enforcement for complex and distributed IT environments in real-time

from a single console.
Think what's next. Think BigFix. 

http://ad.doubleclick.net/clk;82309979;15562032;o?http://www.bigfix.com/
ITNext/
------------------------------------------------------------------------
---


---------------------------------------------------------------------------
This list is sponsored by: BigFix

If your IT fails, you're out of business - or worse.  Arm your 
enterprise with BigFix, the single converged IT security and operations 
engine. BigFix enables continuous discovery, assessment, remediation, 
and enforcement for complex and distributed IT environments in real-time 
from a single console.
Think what's next. Think BigFix. 

http://ad.doubleclick.net/clk;82309979;15562032;o?http://www.bigfix.com/ITNext/
---------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: FAX a virus, anonymous
Next by Date:  RE: Hacking Book / Information, David
Previous by Thread:  FAX a virus, Alcides
Next by Thread:  Re: FAX a virus, Robert Wesley McGrew
Indexes:  [Date] [Thread] [Top] [All Lists]