There are various old questions on stack exchange which say that malicious code in file metadata can potentially be executed when the file is opened (here, here, and here for example). They are all from a few years ago however, is this still a valid threat with today's video players? If so, what steps can I take to make sure that my videos are safe to play?
Asked
Active
Viewed 191 times
1 Answers
1
Try heuristic scanning tools. It's basically putting it all in a sandbox and watch it do it's thing. IF you're adventurous an technically inclined, you also can scan it with forensics tools and get that data visible for inspection. I found a cool book in google books here. If that's too long winded, you could just turn off data execution on your box and any auto run features. This would give you the breathing room to scan the file before deployment and use. Now, let's say you're one of those really paranoid types. Well, get yourself virtualbox, configure a guest, slap on deepfreeze, secure it and tweek it.
Miphix
- 126
- 2