Security hole found in media players

August 3, 2007

clipped from www.physorg.com

David Thiel right senior security consultant with San Francisco-based researcher iSEC Partners answers a question from an attendee during the Black Hat and Defcon hacker conferences at the Caesars Palace hotel-casino in Las Vegas Thursday Aug. 2 2007 ...
David Thiel, right, senior security consultant with San Francisco-based researcher iSEC Partners, answers a question from an attendee during the Black Hat and Defcon hacker conferences at the Caesars Palace hotel-casino in Las Vegas, Thursday, Aug. 2, 2007.
Media players in personal computers have serious vulnerabilities that could allow online criminals to attach malicious code and infect computers without the user’s knowledge, a researcher said Thursday.

As a result, audio and video downloads can be turned into digital weapons that hackers could use to hijack or corrupt computers, said David Thiel, senior security consultant with San Francisco-based researcher iSEC Partners.
Thiel unveiled a new program using a technique called “fuzzing” – corrupting the files used in applications in a controlled way to find exploitable bugs – to identify weaknesses in various media players.
“People know not to open strange documents, but they click on MP3s all day long.”
  blog it
Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: