Author

Topic: PNG Image Metadata Leading to iFrame Injections (Read 1058 times)

sr. member
Activity: 381
Merit: 250
February 06, 2014, 01:19:15 PM
#7
No idea how to turn off PNG image loading with Noscript. Many years ago I wrote a browser that ignored all images and only returned barely formatted text to the users command line, I wonder if I can rebuild re-use this till the exploit is patched up. (IIRC, it was message board avatars that people used which drove me crazy, to the point I would rather read the forum without any images whatsoever additionally at the time I was under a bandwidth cap.

If anyone knows of any browsers similar to the one I coded that is decent let me know.
sr. member
Activity: 476
Merit: 250
Maybe using noscript addon will block Javascript and prevent this exploit for the time being.

https://addons.mozilla.org/en-US/firefox/addon/noscript/

Not sure if Chrome has it

Just installed it, I hope it helps.

Is there some way to only turn off PNG loading? Still allowing for JPG, GIF.
sr. member
Activity: 381
Merit: 250
Maybe using noscript addon will block Javascript and prevent this exploit for the time being.

https://addons.mozilla.org/en-US/firefox/addon/noscript/

Not sure if Chrome has it
legendary
Activity: 3066
Merit: 1147
The revolution will be monetized!
Yuck, a malicious steggo. That is hard to deal with. Do I need to shut off image loading? Would that even do it, or is the PNG read but not displayed in that case?
legendary
Activity: 1148
Merit: 1008
If you want to walk on water, get out of the boat
Can this be blocked somehow? I use Firefox. I guess turning off Java is one way?
Javascript is totally unrelated to java. So, no.
sr. member
Activity: 476
Merit: 250
Can this be blocked somehow? I use Firefox. I guess turning off Java is one way?
legendary
Activity: 1310
Merit: 1000
Researchers have discovered a relatively new way to distribute malware that relies on reading  JavaScript code stored in an obfuscated PNG file’s metadata to trigger iFrame injections.

http://threatpost.com/png-image-metadata-leading-to-iframe-injections/104047
Jump to: