Page 1 of 1
Microsoft - Now there is a jpg security issue
Posted:
Fri Sep 17, 2004 6:53 amby Glen
Microsoft has announced there is a security issue with Windows, Office and some third party programs dealing with jpgs. I am assuming most here have a jpg or two on their pc, might be worth heading over to windowsupdate at microsoft to see if they need an update (yes, this is on top of sp2)
Posted:
Fri Sep 17, 2004 6:56 amby birddog114
Glen,
Glad to hear from you again, where have you been? Gary & myself thought that you may heading to Photokina!!!
I've done it yesterday, thanks for the info
Posted:
Fri Sep 17, 2004 7:11 amby Glen
Hi Birddog, Photokina would have been a great option! Just working a little bit too hard. Only time I picked up a camera this week was to show a client why he should get a DSLR instead of a point and shoot and took two shots of my drink bottle to show him depth of field! What is life coming to?
Posted:
Fri Sep 17, 2004 8:09 amby Onyx
http://news.com.com/Major+graphics+flaw ... g=nefd.top
"...Windows XP Service Pack 2, which is still being distributed to many customers' computers, is
not vulnerable to the flaw."
(bold: my emphasis)
Posted:
Fri Sep 17, 2004 8:29 amby MHD
Posted:
Fri Sep 17, 2004 9:24 amby Onyx
Yeah, but try playing any game on Linux. No API support, even mainstream vid drivers are rare.
Posted:
Fri Sep 17, 2004 9:26 amby MHD
I have Nvidia working on my laptop (Yes... ATI is very badly supported)
I dont play a huge number of games but there are a few ports to linux (UT2004)
Also an office fix involved
Posted:
Fri Sep 17, 2004 9:50 amby Glen
Onyx, probably not a problem on your travelling laptop, but there is also a fix for Microsoft Office and then a third scan for third party software which may be vulnerable. All on the microsoft website.
Posted:
Fri Sep 17, 2004 11:59 amby Onyx
Well, currently it's just a vulnerability - no one's exploited it yet (touch wood).
Posted:
Fri Sep 17, 2004 12:49 pmby Glen
Thank god Onyx, can you imagine not being able to open a jpg without worrying? I can imagine it must be possible because in a different life when I used to spend 6 months a year travelling, my business partner and I had a program which would hide information inside jpgs. Not excel files or anything just ascii but from memory about 500-600 characters inside a jpg. Would look like a jpg to anyone but after going through this program the message would come out. Don't think it had any great encryption, really just no one would take a second glance at a jpg.
Virus
Posted:
Fri Sep 17, 2004 9:19 pmby Killakoala
It would be very challenging for a programmer/virus writer to write malicious code in a JPG anyway. It's not executable. I'd like to hear Microbloats uptake on WHY they think it could be a problem.
Re: Virus
Posted:
Sat Sep 18, 2004 1:07 amby gstark
Killakoala wrote:It would be very challenging for a programmer/virus writer to write malicious code in a JPG anyway. It's not executable. I'd like to hear Microbloats uptake on WHY they think it could be a problem.
Steve,
I could envisage a situation, when you're looking at an image displayed in IE, and where that image might contain some scripting commands that might be malicious.
