Hi malware fighters,
Films and video-files are the new ways of transporting malware, as security experts warn us. In recent months proof-of-concept code to embed malware in Windows Media and RealMedia files have grown. The first real exploit McAfee found to be a worm that infects RealMedia files with a malicious hyperlink. Upon opening the videofile the mediaplayer loads an external website with an exploit on it. “Video can be seen as the newest form to infect systems. This is the top attack vector to worry about”, says Marek Zielinski. Now that executables are stopped by filters, malcreants use well known applications to spread malicious code.
I ust want to mention that if you like WMP you can opt to uncheck the “call out” feature somewhere in its setup, IIRC. And beware of jumping out of the frying pan into the fire. MS isn’t the only one producing apps which have vulnerabilities that are being exploited.
How does avast protect us here? And then there is an alternative to play these streams. I use this free open source media player:
http://www.videolan.org/ Videolan does all the commercial proggies do, and even more. And you can use Democracy Player at http://www.getdemocracy.com/
But I like to get some comments on this topic!
polonus
See:
http://www.darkreading.com/document.asp?doc_id=111157&f_src=darkreading_default