|
Save a program in a picture, IE picture exploit |
|
|
|
Due to a flaw within Internet Explorer, you can view this picture even though it actually has a program embedded within it. The process is rather simple to do.
The above Homer GIF actually contains the Windows calculator. (calc.exe)
Example: Right-click and "Save Picture As..." - it really saves as
'homer2.gif.hta' BUT appears as just homer2.gif if the winXP option "Hide extension for known file types" is enabled (default setting).
History: Many moons ago I found a simple exploit and it's detailed here: (M$ still hasn't patched it yet)
http://secunia.com/advisories/13317/
http://xforce.iss.net/xforce/xfdb/18269
http://www.codeproject.com/useritems/Steganography.asp
If you'd like to create your own examples, simply goto a run prompt and type:
cscript.exe hide.vbs your.gif your.exe
The script merges "your.gif" and "your.exe" to create "your.gif.hta.gif", which correctly displays using the IE browser. If the 'Hide extension for known file types' option is enabled, which is the default setting, the "Save Picture As..." will download "your.gif", it's really "your.gif.hta". (Example: Right-click and Save Homer)
Microsoft described an HTA as running much like an .exe file.
Credit to: vengy
Download Demo:  demo.zip ( 243.33k ) Number of downloads: 113
Related Items:
|
Read All of Our Hot News Items 