Quote:
Originally Posted by Crispy
A normal 4.3 GB video dvd its possible to embed virus code.
XVID/DIVX No way to get virus
.rm Possible as it allows you to put code in the stream
.wmv Possible but I think windows security settings nips that.
.mpg No way to get a virus.
I have only ever scene one evil video file and that was a .rm that repeatly opened your web browser to a certain page. You are more likely to get a virus surfing the web with internet explorer with javascript turned on than you will ever be watching a video.....
|
True, but the possibility exists. A redirect to ANY site embedded in a video is bad, as you can't stop it in time to defuse the bomb. It only takes a second to get an infection, and I now have examples of some very small trojan horse SWF files that I've submitted to all of the antivirus vendors. I found 'em on a site in China that I was looking at after they'd tried to hack us repeatedly.
QuickTime MOVs and other QuickTime movie extensions can also have embedded URLs (I've seen it done).
Also, ANY video file can be
RENAMED to *.AVI and Windows will figure out how to launch it (and then fire up the URL or script), so looking at file extensions is pointless... try it if you don't believe me. The only way to know for sure is to look at the head of the video file with a hex editor or something similar.
In a similar vein, I recently got infected with a brand new version of CoolWWWsearch, and 8 days
AFTER the initial infection is when it went out and started pulling in the rest of the trojans and malware. It sat quietly on the harddrive for 8 whole days so that I wouldn't know where I'd gotten it from. Be careful out there surfing for porn, people.
