E-Mail:

URLs in Spoofed Files

Thursday, February 28th, 2002
at 4:38am

“ItÂ’s been discovered that embedded URLs in spoofed multimedia files (such as .MP3 and .WAV) can be used to “hijackÂâ€? users to malicious web sites. Web sites can be automatically opened when users click on MP3 or WAV files. A hacker can use file extension spoofing in order to trick users to open these files; for example, an .MP3 file may really be another file type, such as a .AFX file, which may contain a URL. Internet applications (browser, e-mail client, etc.) may even open such files without asking the user what to do (if the user made a decision in the past to automatically open the specific file extension).”

Tags
Categories

2 Comments

Anonymous

February 28th, 2002
at 1:39pm

It can also happen in a movie file or any file associated with Windows Media Player.

Anonymous

June 19th, 2007
at 8:27am

weekday through our Live experience (less than ten minutes apiece) - but it’s not scalable to upload these recordings to more than two video networks… Related Content:Warning to All BlogWare UsersA CMS for Audio StuffMoveDigital is Moving ForwardURLs in Spoofed FilesFrom Furo’s FingersSincerely Patti WelshNew Version of MSCONFIGMore PDF Tools (Inbox)Shoot The MessengerBadBlue 1.7

What Do You Think?