Yellow Dog Linux

Community Board
http://www.ydl.net/board/

Backwards written Unicode hides malware and viruses!!!

http://www.ydl.net/board/viewtopic.php?f=13&t=7899

Page 1 of 1

Backwards written Unicode hides malware and viruses!!!

PostPosted: 21 May 2011, 00:04
by aguilarojo
The Webzine "The H Security" recently published a detailed article explaining how malware and viruses are embedded within a backward written executable file which executes within Intel based Linux, Windows and OS X systems! I suspect that this executable cannot be run within PowerPC systems for the same reasons that PowerPC systems cannot run Intel based executables natively without emulation programs. In other words, if a PowerPC user shuts down or quits the emulation program allowing one to run Windows or other Intel based programs then that individual or institution cannot be infected by this strategy.

Here's the story!!!

Re: Backwards written Unicode hides malware and viruses!!!

PostPosted: 21 May 2011, 05:30
by NeoAmsterdam
This is yet another reimplementation of the "hide the extension" vector. OS X and Linux implement UTF-8 and a UTF-8 bytestream is exceedingly unlikely to be confused for executable code - doubly so if the target is x86.

This lame exploit is correct Unicode functionality, not a Unicode vuln.

( :lol: ¿t! əsnqɐ ʇ,uɐɔ noʎ ɟ! əpoɔ!un s! pooɓ ʇɐɥʍ 'səp!səq)
All times are UTC [ DST ]
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/