Windows vulnerability enables remote PC access via iPhone video file

AppleInsider

19 Oct 2020 0 shares 1 views

Windows vulnerability enables remote PC access via iPhone video file

AppleInsider

Published 19 Oct 2020

Apple iPhone owners who use Windows-based machines to view and edit video files are potentially at risk to remote hacking thanks to a vulnerability that exists in the way Microsoft's operating system handles HEVC files.

Discovered last week, the bug in Microsoft's Windows Codecs Library can be exploited to take over and execute code on an unpatched host machine. The threat was flagged by the U.S. Cybersecurity and Infrastructure Security Agency on Friday.Like most remote attack vectors, users trigger arbitrary code execution by opening a specially designed payload, in this case an HEVC image file. Windows mishandles the codec, triggering what appears to be a memory overflow that enables system intrusion and, potentially, remote takeover.

Read more...

Full Article

Government warns of remote attack against Windows PCs editing iPhone video

If you own a Windows PC as well as a recent iPhone, the U.S. government wants you to open the Windows Store today and make sure..

PC World 19 Oct 2020

Windows vulnerability enables remote PC access via iPhone video file

Windows vulnerability enables remote PC access via iPhone video file

You might like

Related news coverage

Government warns of remote attack against Windows PCs editing iPhone video

Advertisement