On Tuesday, June 11, 2002, Daniel van Rooijen [CopyCats] wrote... > I've never heard of that and I don't think it's true; these formats > have no executable code inside, and browsers make no attempt to > execute them. However, what does exist is filenames with a double > extension, such as "naked.gif.exe" or "bigones.jpg.scr". Those > filenames display as naked.gif and bigones.jpg in most programs, but > are in fact executable, and some viruses make use of this.
Guess I need to give an example... Take... erm... SubSeven. Has a small program that 'encapsulates' files... Run it onto a .jpg file it increases the .jpg file by maybe 300kb... file extension is *still* .jpg (no hidden extensions, or anything like that), and the file is now executable, and causes infection with the subseven trojan. -- Jonathan Angliss ([EMAIL PROTECTED]) ________________________________________________________ Current Ver: 1.60q FAQ : http://faq.thebat.dutaint.com Unsubscribe: mailto:[EMAIL PROTECTED] Archives : http://tbudl.thebat.dutaint.com Moderators : mailto:[EMAIL PROTECTED] TBTech List: mailto:[EMAIL PROTECTED] Bug Reports: https://bt.ritlabs.com
