I don't think they can, but I need to know for sure. Thanks.
Gee! These Aren't Roasted!
I don't think they can, but I need to know for sure. Thanks.
Fond of tea.
Technically yes, but they wouldn't be executable ender any remotely normal conditions. If they were, you'd already have big problems.
Short answer, no.
A long Ubuntier
read this amigo
http://www.informationweek.com/news/...ties/207600502
Dont miss anything even it is small. one small pin is enough to bring down a man.
make bzImage, not war
$ mv maliciousprogram maliciousprogram.mp3
$ chmod 755 maliciousprogram.mp3
$ ./maliciousprogram.mp3
Ubuntu addict and loving it
See that line with "chmod"? Don't do that!Originally Posted by HermanAB
Linux will only execute things that have the execute bit enabled, as Herman did there by using 755 as the permissions. If your text, graphics, and media files are not marked executable, then you can't be infected because the program or script won't be run. The most permissive permissions files like these should have is 644, which makes them readable by everyone and writable by their owners.
Also I'll point out that Herman is running the mp3 file from the command prompt. If you were using a player, like Clementine, you'd be running the player, not the mp3 like this "clementine /path/to/file.mp3". If the .mp3 file contained malware, it probably won't play at all. Even if it did play, it would have to trick clementine into doing something dastardly. That's not very likely either, especially since the malware author has no control over which of the many different players you might be using.
Last edited by SeijiSensei; July 4th, 2012 at 04:55 PM.
First Cup of Ubuntu
Read an update on VLC a few years ago saying that there was loop hole allowing code to be executed from subtitle files and it had been patched. Would this not be the case for any of these file types? depending on what you are using to "view" them.
Gee! These Aren't Roasted!
But in all reality, if I open a jpg from a compromised computer, would I be alright? I mean I scanned it with ClamTK and it came back fine.
Ubuntu addict and loving it
For reference, the vulnerability report is here.
Subtitle streams wouldn't be in any of the formats the OP mentioned, but yes, it's possible to find "holes" in existing software and craft an exploit to take advantage of them. In this particular case, though, the software would only have the same permissions as the user watching the video. Assuming the person is smart enough not to watch videos as the root user, the security model in Linux severely constrains what a user-level exploit can do. There are certainly nasty things that can be crafted to run as an ordinary user (keystroke loggers come immediately to mind), but my reading of the VLC report above suggests a more likely result is that the player would have crashed.
Nothing is ever certain in life (except death and taxes, of course), but yes, I think you shouldn't worry about looking at a jpeg from a compromised computer.
Last edited by SeijiSensei; July 5th, 2012 at 02:19 AM.
Has an Ubuntu Drip
Short answer, yes.
Long answer, I'm too lazy to explain in detail. You can use images or any file to exploit vulnerabilities in programs. It's not super common but it can happen.
There's also stenography where payloads are held in images to avoid AV detection.
sig
Dark Roasted Ubuntu
it is too simple to have any kind of program and rename it so it looks like some picture or so.
Abt 8 years ago, we had the case in our company, that one man got some picts from a customer, opened it, well on windows and ACDsee picture viewer and in the next moment all pictures from his computer were wiped by a malware being in one of the received jpg files.
Posting Permissions
Adv Reply
Bookmarks