Sorry your browser is not supported!

You are using an outdated browser that does not support modern web technologies, in order to use this site please update to a new browser.

Browsers supported include Chrome, FireFox, Safari, Opera, Internet Explorer 10+ or Microsoft Edge.

Geek Culture / Secure your computer from rampaging jpegs!

Author
Message
John Y
Synergy Editor Developer
22
Years of Service
User Offline
Joined: 4th Sep 2002
Location: UK
Posted: 25th Sep 2004 04:31
Link
It's been out a while, but if you haven't heard there is a flaw in some Microsoft software that allows malicious code to be executed from a jpeg image!

Update your computer at http://www.microsoft.com/security/bulletins/200409_jpeg.mspx

I don't think DarkBasic is mentioned


Http://www.DigitalOmega.Net & Http://www.LevelMaker3D.co.uk
Back to top
Profile PM Website
OSX Using Happy Dude
21
Years of Service
User Offline
Joined: 21st Aug 2003
Location: At home
Posted: 25th Sep 2004 04:32
Link
Not really needed for XP SP2 (although its still a critical update for some reason)...


Come to the UK Convention on the 23rd & 24th of October
Back to top
Profile PM Email Website
John Y
Synergy Editor Developer
22
Years of Service
User Offline
Joined: 4th Sep 2002
Location: UK
Posted: 25th Sep 2004 04:33
Link
Well, as I mentioned on LLRGT, I still had to update Office 2003 and Visual Studio .Net 2003


Http://www.DigitalOmega.Net & Http://www.LevelMaker3D.co.uk
Back to top
Profile PM Website
OSX Using Happy Dude
21
Years of Service
User Offline
Joined: 21st Aug 2003
Location: At home
Posted: 25th Sep 2004 04:35
Link
Yes, where did you get the VS Updates ?


Come to the UK Convention on the 23rd & 24th of October
Back to top
Profile PM Email Website
John Y
Synergy Editor Developer
22
Years of Service
User Offline
Joined: 4th Sep 2002
Location: UK
Posted: 25th Sep 2004 04:37 Edited at: 25th Sep 2004 04:37
Link
The full list along with the fixes can be found at http://www.microsoft.com/technet/security/bulletin/MS04-028.mspx


Http://www.DigitalOmega.Net & Http://www.LevelMaker3D.co.uk
Back to top
Profile PM Website
OSX Using Happy Dude
21
Years of Service
User Offline
Joined: 21st Aug 2003
Location: At home
Posted: 25th Sep 2004 05:05
Link
Thanks


Come to the UK Convention on the 23rd & 24th of October
Back to top
Profile PM Email Website
Ian T
22
Years of Service
User Offline
Joined: 12th Sep 2002
Location: Around
Posted: 25th Sep 2004 05:27
Link
Yet another good reason to use Windows 98...

[center]
"Humans are useless they can only give you questions."
Back to top
Profile PM
OSX Using Happy Dude
21
Years of Service
User Offline
Joined: 21st Aug 2003
Location: At home
Posted: 25th Sep 2004 05:29
Link
..especially if you want a really old, buggy system...


Come to the UK Convention on the 23rd & 24th of October
Back to top
Profile PM Email Website
Ian T
22
Years of Service
User Offline
Joined: 12th Sep 2002
Location: Around
Posted: 25th Sep 2004 05:32
Link
...that can't be hijacked by frikkin' JPEGs

[center]
"Humans are useless they can only give you questions."
Back to top
Profile PM
Jimmy
21
Years of Service
User Offline
Joined: 20th Aug 2003
Location: Back in the USA
Posted: 25th Sep 2004 05:35
Link
What about being hijacked by frikkin' terrorists?????


http://www.dbspot.com/ - Free website hosting. Fast and reliable... probably.
Back to top
Profile PM Website
OSX Using Happy Dude
21
Years of Service
User Offline
Joined: 21st Aug 2003
Location: At home
Posted: 25th Sep 2004 05:36
Link
Quote: "that can't be hijacked by frikkin' JPEGs "

And cant play the latest games and bugged to hell


Come to the UK Convention on the 23rd & 24th of October
Back to top
Profile PM Email Website
Kentaree
22
Years of Service
User Offline
Joined: 5th Oct 2002
Location: Clonmel, Ireland
Posted: 25th Sep 2004 05:37
Link
Bah, JPEGs, terrorists, what's the difference? I say bomb 'm all!

AMD Athlon XP2800+
GeForce FX5200 128MB
1024MB DDR 333MHz RAM
Back to top
Profile PM Email Website
Kentaree
22
Years of Service
User Offline
Joined: 5th Oct 2002
Location: Clonmel, Ireland
Posted: 25th Sep 2004 05:38
Link
There doesnt seem to be a mention of Windows 2000 either, which is right in between 98 and XP

AMD Athlon XP2800+
GeForce FX5200 128MB
1024MB DDR 333MHz RAM
Back to top
Profile PM Email Website
IanM
Retired Moderator
22
Years of Service
User Offline
Joined: 11th Sep 2002
Location: In my moon base
Posted: 25th Sep 2004 05:41
Link
All windows OS's from ME upwards have the JPEG vunerability.

*** Coming soon - Network Plug-in - Check my site for info ***
For free Plug-ins, source and the Interface library for Visual C++ 6, .NET and now for Dev-C++ http://www.matrix1.demon.co.uk
Back to top
Profile PM Email Website
Ian T
22
Years of Service
User Offline
Joined: 12th Sep 2002
Location: Around
Posted: 25th Sep 2004 05:42
Link
Odd, I thought ME was GDI.

[center]
"Humans are useless they can only give you questions."
Back to top
Profile PM
OSX Using Happy Dude
21
Years of Service
User Offline
Joined: 21st Aug 2003
Location: At home
Posted: 25th Sep 2004 05:45
Link
All Windows use GDI (and/or GDI+) - the exception will be Longhorn as that will use something else - whoohoo...


Come to the UK Convention on the 23rd & 24th of October
Back to top
Profile PM Email Website
Black Hydra II
20
Years of Service
User Offline
Joined: 26th Nov 2003
Location:
Posted: 25th Sep 2004 05:46
Link
So using Windows 98 is actually beneficial in this situation?

Yes! Score one for my team...

So far its:
Windows 98 -- 1
XP - 4932849023890...

I think I'll have a new computer by the time we get our second point :roll:

"Damn had to remake account!" direct quotation from previous account.
Back to top
Profile PM
Mentor
22
Years of Service
User Offline
Joined: 27th Aug 2002
Location: United Kingdom
Posted: 25th Sep 2004 22:45
Link
thats not strictly true, it doesnt allow code to be executed from a JPEG, it allows code to be executed from a flaw in GDI+ when it is processing or altering a jpeg, you can load and view a JPEG just fine, but altering one will make you vulnerable to some flaws in GDI+ where it effectivley falls over and tries to execute JPEGs as code, just another example of Micro$ofts dumbass excuse of a bloated operating system at it`s worst.

Mentor.

PC1: P4 3ghz, 1gig mem, 3x160gig hd`s, Radeon 9800pro w cooler (3rd gfx card), 6 way speakers.
PC2: AMD 2ghz, 512mb ram, FX5200 ultra, 16 bit SB.
Mini ATX cases suck.
Back to top
Profile PM
Teh Go0rfmeister
21
Years of Service
User Offline
Joined: 17th Aug 2003
Location:
Posted: 26th Sep 2004 17:33
Link
yeh- theres a few virii goin round attatched to jpg's on kazaa

Back to top
Profile PM Website
Back to top

Login to post a reply

Server time is: 2024-11-26 04:42:08
Your offset time is: 2024-11-26 04:42:08