Official BS.Player forums  

Go Back   Official BS.Player forums > Main forum > Answered And Solved Questions
Register FAQ Calendar Today's Posts Search

Answered And Solved Questions A good place to check before you post your question. All answered / solved posts are archived here.

Reply
 
LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 23rd September 2008
Junior Member
BS.player Regular User
 
Join Date: Mar 2007
Posts: 15
Rep Power: 0
robert334 is an unknown quantity at this point
Default [NOT A SECURITY HOLE ACTUALLY] BSPlayer security hole

How can command embedded into Avi?
BSPlayer 2.27 Buil 959
I guess someone has discovered a security hole and testing it now.
Doubleclicking plays avi and then starts a unrar command ...
How can playing avi start a unrar program????? whatever it may start then?????

I uploaded an avi segment 576x352 distorted to 240.avi (130k) to
http://www.sendspace.com/file/iijwmz (clean)


The file was "repaired" to 576x352.avi and uploaded by another forum member and uploaded
http://www.sendspace.com/file/eanxuj (not suspcious, until played with BS Player)

Now when started with doubleclick, the "repaired" avi plays with BSPlayer and then visibly unpacks the closest rar (which is a music mp3 album) into user temp folder which starts to play when 1-2 second video stops.

Right now doen't seem to have done any harm to system but needs checking ... when I have time.
Reply With Quote
  #2 (permalink)  
Old 23rd September 2008
Moderator
BS.Player Master
 
Join Date: Nov 2003
Location: Italy
Posts: 3,037
Rep Power: 28
Tizio will become famous soon enough
Default

:?: :?: :?: just tried with v2.31 and no rar-unpacking happened.. :? (I tried to put the file in the same folder as other RARs, ZIPs and also created a RAR file with the exact same name as the avi file)

Try to scan your system for some sort of viruses by using a good antivirus program..
__________________
BSP SkinMaker (v1.07) the one and only Skin Editor for BSplayer
BSP Definitions Manager (v1.02)
BS.Player's FAQ (by BSPeter) | Italian language file (v2.57 build 1051)
Reply With Quote
  #3 (permalink)  
Old 23rd September 2008
Junior Member
BS.player Regular User
 
Join Date: Mar 2007
Posts: 15
Rep Power: 0
robert334 is an unknown quantity at this point
Default

Thanks Tizio for support

I have tried several times, it's the same each time. 1-2 sec avi and bsplayer skin looking small window opens where next rar in the folder is unrared to temp folder which starts to play next. Is there any unraring function embedded into BSPlayer???


Op system is Windows XP. I'm trying to find any other trace.
There is a lot of network traffic, therefore right now I'm not sure if it tries to connect to somewhere. NAV 2008 doesn't alert neither.
But sure is - the file looks the same stretched and isn't repaired, so I guess purpose of upload was something else :-)
Reply With Quote
  #4 (permalink)  
Old 23rd September 2008
Moderator
BS.Player Master
 
Join Date: Nov 2003
Location: Italy
Posts: 3,037
Rep Power: 28
Tizio will become famous soon enough
Default

Yes, in BSplayer there's an unraring feature since v2.10.939 (for uncompressed rars) and improved since v2.25.955 (for compressed rars)
__________________
BSP SkinMaker (v1.07) the one and only Skin Editor for BSplayer
BSP Definitions Manager (v1.02)
BS.Player's FAQ (by BSPeter) | Italian language file (v2.57 build 1051)
Reply With Quote
  #5 (permalink)  
Old 23rd September 2008
Junior Member
BS.player Regular User
 
Join Date: Mar 2007
Posts: 15
Rep Power: 0
robert334 is an unknown quantity at this point
Default

BTw. it seems that BS has a built in unzip function which starts , when Playlist - always add files in current directory to playlist option is active.

It unrars zip and from rar plays music direct without unraring files.
So the avi may be harmless.
Reply With Quote
  #6 (permalink)  
Old 23rd September 2008
Moderator
BS.Player Master
 
Join Date: Nov 2003
Location: Italy
Posts: 3,037
Rep Power: 28
Tizio will become famous soon enough
Default

If you enabled the option to load every file in current folder, I think it's normal that it tries to unrar media files and start to play them ;)
Don't worry, that file is harmless
__________________
BSP SkinMaker (v1.07) the one and only Skin Editor for BSplayer
BSP Definitions Manager (v1.02)
BS.Player's FAQ (by BSPeter) | Italian language file (v2.57 build 1051)
Reply With Quote
  #7 (permalink)  
Old 23rd September 2008
Junior Member
BS.player Regular User
 
Join Date: Mar 2007
Posts: 15
Rep Power: 0
robert334 is an unknown quantity at this point
Default

Harmfull indeed :-) , but any unexpected action or unraring makes suspicious, especially after starting any downloaded file from web :-)
Reply With Quote
  #8 (permalink)  
Old 7th October 2008
Ico-man's Avatar
BS.Support
BS.Player Power User
 
Join Date: Sep 2006
Location: Slovenia
Posts: 1,469
Rep Power: 10
Ico-man is on a distinguished road
Default BS.Player can playback compressed and uncompressed rar's

Also, if you uncheck the option Add all files from folder to PL, then the BS.Player will play only selected file and will not try to add any files from that folder to PL (and subsequently open archives and try to playback any multimedia content from them).
Reply With Quote
Reply

Tags
hole, security


Posting Rules


All times are GMT +1. The time now is 05:36 PM.


Powered by vBulletin® Version 3.8.9
Copyright ©2000 - 2024, vBulletin Solutions, Inc.
Search Engine Optimization by vBSEO 3.6.0 PL2
Ad Management plugin by RedTyger

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20