El Reg reports
Penetration tester Marcus Murray says attackers can use malicious JPEGs to pop modern Windows servers, to gain expanded privileges over networks.
In a live hack set down for RSA San Francisco this week, the TrueSec boffin shows how he used the hack to access an unnamed US Government agency that ran a buggy photo upload portal.
A key part of the stunt is achieved by inserting active content into the attributes of a jpg image, such that the file name read image.jpg.aspx. "I'm going to try to compromise the web server, then go for back end resources, and ultimately compromise a domain controller," Murray said, adding the hack is not that difficult.
video
This is by no means a new attack vector.
Why are we still dealing with this over ten years later?
(Score: 0, Insightful) by Anonymous Coward on Tuesday April 21 2015, @03:48PM
(Score: 5, Insightful) by Grishnakh on Tuesday April 21 2015, @05:10PM
No, it is an example of how great OSS is. Every single time some vulnerability like this is discovered in OSS, it's fixed quickly (sometimes within hours), and a patch is issued immediately. No, OSS isn't perfect, and has vulnerabilities too, but when they're found, they're immediately fixed. The same simply can't be said for proprietary software. There, the companies even want to restrict people from disclosing these vulnerabilities publicly, and if they could, they'd make it illegal to EVER disclose them, because they really don't care to fix them since that affects their bottom line. This simply doesn't exist in OSS, where the creators of the software actually take pride in their work and want to fix it when problems are found.
How else do you explain a vulnerability in Windows going for 10 years without a fix?
(Score: 2) by nukkel on Tuesday April 21 2015, @06:27PM
How else do you explain a vulnerability in Windows going for 10 years without a fix?
It got promoted to 'feature'?
(Score: 3, Interesting) by panachocala on Tuesday April 21 2015, @08:06PM
Because of cooporation with NSA which was using it to infect Iranian centrifuges, etc.
(Score: 2) by FatPhil on Tuesday April 21 2015, @08:43PM
Great minds discuss ideas; average minds discuss events; small minds discuss people; the smallest discuss themselves