Malicious media - ASF scripting

Marius van Oers McAfee Avert Network Associates

Popular peer to peer transfer files like .MP3, .ASF and .JPG files are until now exempt from native malware. What so far happened is that the file content as such is of a complete different filetype so it just has a deceiving file extension to trick the user.

But this doesn't mean that media files are always guaranteed to be safe. Windows media files like .ASF (Advanced Systems Format) files can contain audio and video data but it can also contain other Binary files and it supports Scripting. This might become a possible new threat area in the future.

This paper will mainly focus on the .ASF file structure and the possible security issues related to that.

VB Conferences

VB2011 (Barcelona)

VB2010 (Vancouver)

VB2009 (Geneva)

VB2008 (Ottawa)

VB2007 (Vienna)

VB2006 (Montréal)

VB2005 (Dublin)

VB2004 (Chicago)

VB2003 (Toronto)

VB2002 (New Orleans)

VB2001 (Prague)

VB2000 (Orlando)

VB99 (Vancouver)

VB98 (Munich)

VB97 (San Francisco)

VB96 (Brighton)

VB95 (Boston)

VB94 (Jersey)

VB93 (Amsterdam)

VB92 (Edinburgh)

VB91 (Jersey)

‘As always, VB is 'the' premier malware/anti-malware/spam conference.’

Poll

Do you use the same password(s) across multiple websites?

Leave a comment
View 4 comments

Jobs

In Virus Bulletin's jobs pages among others:

Virus Analyst (Tettnang, Germany)
Network Consultants (Košice, Slovakia)

Virus Bulletin currently has 190,996 registered users.

Fighting malware and spam