- Se incorporó
- 1 Octubre 2007
- Mensajes
- 6.064
Los amigos de CheckPoint Researchers han detectado un nuevo tipo de exploit que permite al atacante obtener control total del equipo, nada más ni nada menos que utilizando archivos de subtítulos maliciosos
http://blog.checkpoint.com/2017/05/23/hacked-in-translation/
http://blog.checkpoint.com/2017/05/23/hacked-in-translation/
Check Point researchers revealed a new attack vector which threatens millions of users worldwide – attack by subtitles. By crafting malicious subtitle files, which are then downloaded by a victim’s media player, attackers can take complete control over any type of device via vulnerabilities found in many popular streaming platforms, including VLC, Kodi (XBMC), Popcorn-Time and strem.io. We estimate there are approximately 200 million video players and streamers that currently run the vulnerable software, making this one of the most widespread, easily accessed and zero-resistance vulnerability reported in recent years.