Monday, March 19, 2007

Common file overflows and social networking exploits

If you haven't installed the OS X 10.4.9 patch yet, you should - don't forget to back up first! Exploits are already being reported in the wild. While a number of the vulnerabilities fixed are exploitable in interesting ways, the one that really caught my eye is (from the SANS @RISK update):
"A specially-crafted GIF, PICT or RAW image file could exploit an integer overflow in the ImageIO subsystem or a heap overflow in the QuickDraw manager subsystem. Successfully exploiting these overflows could allow an attacker to execute arbitrary code with the privileges of the current user. Note that this flaw may affect images embedded in web pages." (link)
Any time you have a common image format bug that can result in a arbitrary code execution, you have a scary possible exploit. How long will it be until a hole like this is found in IE or Firefox, an exploit is crafted, and someone pays a Digg bot to get it dugg enough to infect thousands of machines?

No comments: