Malicious media - ASF scripting

Marius van Oers McAfee Avert Network Associates

Popular peer to peer transfer files like .MP3, .ASF and .JPG files are until now exempt from native malware. What so far happened is that the file content as such is of a complete different filetype so it just has a deceiving file extension to trick the user.

But this doesn't mean that media files are always guaranteed to be safe. Windows media files like .ASF (Advanced Systems Format) files can contain audio and video data but it can also contain other Binary files and it supports Scripting. This might become a possible new threat area in the future.

This paper will mainly focus on the .ASF file structure and the possible security issues related to that.

VB Conferences

VB2010 (Vancouver)

VB2009 (Geneva)

VB2008 (Ottawa)

VB2007 (Vienna)

VB2006 (Montréal)

VB2005 (Dublin)

VB2004 (Chicago)

VB2003 (Toronto)

VB2002 (New Orleans)

VB2001 (Prague)

VB2000 (Orlando)

VB99 (Vancouver)

VB98 (Munich)

VB97 (San Francisco)

VB96 (Brighton)

VB95 (Boston)

VB94 (Jersey)

VB93 (Amsterdam)

VB92 (Edinburgh)

VB91 (Jersey)

‘My first VB conference. I am very impressed and will be back next year for sure.’

Poll

Who in your company is responsible for installing software patches?

Leave a comment

VB100 certification

The final VB100 of the year sees a double whammy of potential pitfalls for our comparative participants - the Vista operating system, which still seems shiny and new as well as a little scary (to both developers and users), as well as the x64 architecture, whose ostensible compatibility with standard 32-bit software belies oddities and intricacies that developers ignore at their peril. The announcement of the test brought a few surprises, as several regulars opted to skip this one, but the majority of veteran competitors took part as usual, along with several newer faces, many of whom look set to join the ranks of our regulars.
See full results.

Virus Bulletin currently has 148,287 registered users.

Fighting malware and spam