|
| |||||||
| Answered And Solved Questions A good place to check before you post your question. All answered / solved posts are archived here. |
| | LinkBack  | Thread Tools | Search this Thread | Display Modes |
  Tizio :?: :?: :?: just tried with v2.31 and no rar-unpacking happened.. :? (I tried to put the file in... 23rd September 2008, 09:00 AM robert334 Thanks Tizio for support
I have tried several times, it's the same each time. 1-2 sec avi and... 23rd September 2008, 09:11 AM Tizio Yes, in BSplayer there's an unraring feature since v2.10.939 (for uncompressed rars) and improved... 23rd September 2008, 09:15 AM robert334 BTw. it seems that BS has a built in unzip function which starts , when Playlist - always add files... 23rd September 2008, 09:20 AM Tizio If you enabled the option to load every file in current folder, I think it's normal that it tries... 23rd September 2008, 09:22 AM robert334 Harmfull indeed :-) , but any unexpected action or unraring makes suspicious, especially after... 23rd September 2008, 09:40 AM |
23rd September 2008
| |||
| |||
 [NOT A SECURITY HOLE ACTUALLY] BSPlayer security hole
How can command embedded into Avi? BSPlayer 2.27 Buil 959 I guess someone has discovered a security hole and testing it now. Doubleclicking plays avi and then starts a unrar command ... How can playing avi start a unrar program????? whatever it may start then????? I uploaded an avi segment 576x352 distorted to 240.avi (130k) to http://www.sendspace.com/file/iijwmz (clean) The file was "repaired" to 576x352.avi and uploaded by another forum member and uploaded http://www.sendspace.com/file/eanxuj (not suspcious, until played with BS Player) Now when started with doubleclick, the "repaired" avi plays with BSPlayer and then visibly unpacks the closest rar (which is a music mp3 album) into user temp folder which starts to play when 1-2 second video stops. Right now doen't seem to have done any harm to system but needs checking ... when I have time.  |
| Tags |
| hole, security |
| |
![[NOT A SECURITY HOLE ACTUALLY] BSPlayer security hole](http://forum.bsplayer.com/iconimages/answered-solved-questions/not-security-hole-actually-bsplayer-security-hole_ltr.gif "[NOT A SECURITY HOLE ACTUALLY] BSPlayer security hole")
Threaded Mode
