09-05-2015, 01:58 AM
(09-05-2015, 12:12 AM)avj link Wrote: If you click on the link I provided for more info, and then click on the "File detail" tab it states: The file being studied is an image file! More specifically, it is a JPEG. The image has been injected with malicious web content.Oh I see. It's in Entrance.jpg, that image is from LL 2.0 not sure about the previous ones.
In the box right below that statement is what appears to be the code that was injected into the file.
Looking at the code. as far as I can see there is a code that opens a webpage. I don't see how would xfce or ristereto image viewer be affected.
Tested on Firefox and it it looks it is not affected. Could possibly target some vulnerability in windows applications.
It appears that the image originates from some website. Anyway the threat seems minimal as many major antiviruses neglect this.
I'll wait to see what Jerry has to say about this.
In the future I suggest that the images that are going to be added to distro be uploaded in Gimp's XCF image file format.
That way the images will be open source and easy to modify.