Author Topic: New JPG vulnerability?  (Read 7398 times)

0 Members and 1 Guest are viewing this topic.

gelbaum

  • Guest
New JPG vulnerability?
« on: September 29, 2004, 01:05:44 AM »
Hi all,

Are we protected against this new, terrible JPG vulnerability with Avast? I know it is not "in the wild" yet, but from what I read the vulnerability is on it's way to being a full-blown worm.

I found a link to a sample of an infected file if anyone is interested. Bitdefender Free picks it up on demand, but Avast Home does not with defs 0440-01 (unless I am not doing something right).

BlitzenZeus

  • Guest
Re:New JPG vulnerability?
« Reply #1 on: September 29, 2004, 01:30:29 AM »
There is already a example of this exploit, and it has be exploited in the wild.  A sample had been submitted, but they have yet to update their definitions.
« Last Edit: September 29, 2004, 01:30:54 AM by BlitzenZeus »

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48524
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
« Last Edit: September 29, 2004, 03:38:00 AM by bob3160 »
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Offline Eddy

  • Avast Evangelist
  • Maybe Bot
  • ***
  • Posts: 31080
  • Watching (over?) you
    • Malware removal, Biljart and other things.
Re:New JPG vulnerability?
« Reply #3 on: September 29, 2004, 02:01:45 AM »
On september 14th, Microsoft has released a security patch for it. Visit Windows Update and install ALL security patches/updates.

gelbaum

  • Guest
Re:New JPG vulnerability?
« Reply #4 on: September 29, 2004, 02:53:43 AM »
I check for updates daily. I installed this so-called "patch" (probably one of the worst implementations of a Microsoft fix ever) as soon as it came out.

 However multiple third party apps also install dll's etc. that are prone to this vulnerability. This is why I rely on my AV to be my first line of defense. As opposed to other viruses, safe computing practices are irrelevant for this specific vulnerability.

inthewildteam

  • Guest
Re:New JPG vulnerability?
« Reply #5 on: September 29, 2004, 03:04:46 AM »
There is nothing that I like better than "knocking m$" however this link might lead you to other programmes that might still be open to attacks after installing M$ updates.  Got to give them the credit for fixing this quite quickly   ;)

http://news.bbc.co.uk/1/hi/technology/3684552.stm

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48524
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re:New JPG vulnerability?
« Reply #6 on: September 29, 2004, 03:39:37 AM »
inthewildteam,
My link leads you to an analysis tool to see what's voulnerable.
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

gelbaum

  • Guest
Re:New JPG vulnerability?
« Reply #7 on: September 29, 2004, 03:03:54 PM »
BitDefender Free V7 alerts:

C:\temp\virus-jpeg.zip=>possibleVirus.jpg is infected with Exploit.Win32.MS04-028.Gen

I *know* about the Microsoft patches and fixes but my question was fairly specific: Will Avast also be able to identify it in one of the new defs?

catseyenu

  • Guest
Re:New JPG vulnerability?
« Reply #8 on: September 29, 2004, 07:59:12 PM »
It is covered/detected with file version 0440-2, compilation date: 29.09.2004.

Offline RejZoR

  • Polymorphic Sheep
  • Serious Graphoman
  • *****
  • Posts: 9406
  • We are supersheep, resistance is futile!
    • RejZoR's Flock of Sheep
Re:New JPG vulnerability?
« Reply #9 on: September 29, 2004, 08:10:48 PM »
MS04-028 JPG Exploit
Visit my webpage Angry Sheep Blog

gelbaum

  • Guest
Re:New JPG vulnerability?
« Reply #10 on: September 29, 2004, 11:07:17 PM »
Thanks, guys! That was fast.

Keep up the excellent work. This forum is amazing. ;D

watchthisspace

  • Guest
Re:New JPG vulnerability?
« Reply #11 on: September 30, 2004, 12:51:14 AM »
I believe XP users with SP2 dont have the Exploit.  :)

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48524
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re:New JPG vulnerability?
« Reply #12 on: September 30, 2004, 12:59:11 AM »
watchthisspace
You're right not XP2 but, that doesn't protect any of the other programs mentioned, There is also a fix for Office if your running that.
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67195
Re:New JPG vulnerability?
« Reply #13 on: September 30, 2004, 12:59:52 AM »
I believe XP users with SP2 dont have the Exploit.  :)

Yes, they have  :'(
This was correctly after, by a specific MS patch  ;)
The best things in life are free.

watchthisspace

  • Guest
Re:New JPG vulnerability?
« Reply #14 on: September 30, 2004, 01:05:14 AM »
watchthisspace
You're right not XP2 but, that doesn't protect any of the other programs mentioned, There is also a fix for Office if your running that.
As soon as I get my computer back im gonna download the office 2003 SP1 and all the patches ive missed out on  :-[ :)