Started Topics :
115
Posts :
873
Posted : May 25, 2013 05:53:18
i found big problem in all musical software
which allow me to execute a shellcode when dll is location in vst plugs
The bugs response to all musical software
here a video demo what i made
Started Topics :
87
Posts :
2822
Posted : May 25, 2013 13:56
don`t know what you try to show here..its probably one of th easiest things to do for coders to create a dll wich crahes everything. But when did this ever happen to you or someone you know? why should anybody do such things?
-------......-------...-..-..-..-.-.-.-.-
smoker
IsraTrance Full Member
Started Topics :
115
Posts :
873
Posted : May 25, 2013 14:26
Quote:
On 2013-05-25 13:56, Suloo wrote:
don`t know what you try to show here..its probably one of th easiest things to do for coders to create a dll wich crahes everything. But when did this ever happen to you or someone you know? why should anybody do such things?
It's a big big problem men.
if software can be crashing and execute shellcode (virus/botnet/malware...etc) that's really bad, because you can be infected in 1sec.
sorry men i am Security Engineer and my hobby is music.
that's why i say becerful
for example
1.hacker come here and post amazing free vst plug
2.you downloading the vst and put in vst folder
3. you open your software and shellcode executing
4. Game Over and hacker control remoty your Computer without your even know what's happen
Started Topics :
17
Posts :
269
Posted : May 25, 2013 15:16
Quote:
It's a big big problem men.
if software can be crashing and execute shellcode (virus/botnet/malware...etc) that's really bad, because you can be infected in 1sec.
sorry men i am Security Engineer and my hobby is music.
that's why i say becerful
for example
1.hacker come here and post amazing free vst plug
2.you downloading the vst and put in vst folder
3. you open your software and shellcode executing
4. Game Over and hacker control remoty your Computer without your even know what's happen
every program (also vst/au/rtas...) you get can include bad guys code. it needs no buffer overflow to do dirty things. the dll gets the accessrights from the hostapplication. it has the same acces to filesystem and network like all other apps.
when some windowsbinary can crash by a buffer overflow then all executable can trigger this problem.
how should a hostdev prevent bad code in 3rd party stuff? the only way is to do it like reason. all sourcecode of the plugins is in the hand of the hostprogramer.
i think its up to you only use plugins from trusted devs. and dont work with admin rights /use antivirus software.
Sunrise Travellers
IsraTrance Junior Member
Started Topics :
17
Posts :
585
Posted : May 25, 2013 15:38
Personaly i work with this way:
I have 2 pc, one for music production and the 2nd for the rest. with that way my music pc stays clean and fast (win7) and use the internet only for updates etc. I havent any issue with infections and bad function about 2 years now when i bought my pc.
now for the dll plugs, i think the problem is in code rather than these plugs are virus or trojans etc in most cases.
...into the wild....
Login
IsraTrance Full Member
Started Topics :
65
Posts :
1707
Posted : May 25, 2013 19:49
don't use wares, of dubious free stuff, problem solved.
"The dedication to repetition — the search for nirvana in a single held tone or an endlessly cycling rhythm — is one of electronic music's noblest gestures."
willsanquil
IsraTrance Full Member
Started Topics :
93
Posts :
2822
Posted : May 25, 2013 21:18
only issue I've ever had with vst software and shady business is when the zebra plugs would break themselves after a while...
but never had any issues with viruses or anything and I've downloaded soooooo many shady music things over the past couple years. if warez music software were slutty women I would have died of aids years ago.
people WAY overblow the threat and presence of virii online IMO.
then again I'm used to figuring out which warez download is bullshit and which is real so I can see how people not used to that world could download some bad shit.
If you want to make an apple pie from scratch...you must first invent the universe
www.soundcloud.com/tasp www.soundcloud.com/kinematic-records
smoker
IsraTrance Full Member
Started Topics :
115
Posts :
873
Posted : May 26, 2013 00:46
Quote:
On 2013-05-25 15:16, psycox wrote:
Quote:
It's a big big problem men.
if software can be crashing and execute shellcode (virus/botnet/malware...etc) that's really bad, because you can be infected in 1sec.
sorry men i am Security Engineer and my hobby is music.
that's why i say becerful
for example
1.hacker come here and post amazing free vst plug
2.you downloading the vst and put in vst folder
3. you open your software and shellcode executing
4. Game Over and hacker control remoty your Computer without your even know what's happen
every program (also vst/au/rtas...) you get can include bad guys code. it needs no buffer overflow to do dirty things. the dll gets the accessrights from the hostapplication. it has the same acces to filesystem and network like all other apps.
when some windowsbinary can crash by a buffer overflow then all executable can trigger this problem.
how should a hostdev prevent bad code in 3rd party stuff?
Your right but still it's a problem
and easy to prevent bad vst to loading in the program.
Started Topics :
115
Posts :
873
Posted : May 26, 2013 00:50
guy's i just warned you that's all.
and Of course you can protect yourself and not fail to this trap.
and this thread is just warned people who dunno about it.
-------------------------------------------------
https://soundcloud.com/user-537936268