Windows vulnerability enables remote PC access via iPhone video file

Posted:
in iPhone
Apple iPhone owners who use Windows-based machines to view and edit video files are potentially at risk to remote hacking thanks to a vulnerability that exists in the way Microsoft's operating system handles HEVC files.

iPhone X


Discovered last week, the bug in Microsoft's Windows Codecs Library can be exploited to take over and execute code on an unpatched host machine. The threat was flagged by the U.S. Cybersecurity and Infrastructure Security Agency on Friday.

Like most remote attack vectors, users trigger arbitrary code execution by opening a specially designed payload, in this case an HEVC image file. Windows mishandles the codec, triggering what appears to be a memory overflow that enables system intrusion and, potentially, remote takeover.

As noted by PC World, iPhone users are particularly susceptible to hacks that take advantage of the Windows flaw, as modern iterations of the handset rely heavily on HEVC for video recording. The codec has been offered by Apple since iPhone 7 and became the standard high-resolution video file format with iOS 11. HEVC assets are required to view or edit video on a Windows PC.

Further, longtime iPhone owners might be accustomed to receiving HEVC video attachments or seeing the file format online, meaning it is unlikely to raise red flags.

Users who manually downloaded HEVC or "HEVC from Device Manufacturer" codecs from the Microsoft Store are also vulnerable to attack.

Microsoft released a patch for the flaw last week. Versions 1.0.32762.0, 1.0.32763.0, and later are deemed safe for use and can be downloaded from the company's online store.

Comments

  • Reply 1 of 5
    rob53rob53 Posts: 3,263member
    Of course there’s yet another vulnerability in Windows. 
    watto_cobra
  • Reply 2 of 5
    rob53 said:
    Of course there’s yet another vulnerability in Windows. 
    You do realize that Apple puts out security updates for macOS that fixes vulnerabilities in macOS?  I know you just wanted to diss Windows, but macOS has it's fair share.

    Here's some of the latest ones:

    https://support.apple.com/en-us/HT211289

    edited October 2020
  • Reply 3 of 5
    Rob53 & ITGUYINSD : You're right !! But, i'm ing. in electronics (Cpu Designer) since 1989 and analyst & programmer … holes and vulnerability also existes, but, in many cases, they are man made, at purpose, by insiders paid for that (military, competitors, etc) … since the early 90', but also before !!  Good Night sleep to everyone else thinking otherwise !  From France, with Love ! (sorry for my Approx. English !)
    PetrolDavegatorguy
  • Reply 4 of 5
    Why is a there a picture of the AMC Movie App message? Like AMC is not doing bad enough with the COVID stuff, a picture like that, with an article that has nothing to do with AMC, might even hurt them more.....
  • Reply 5 of 5
    Rayz2016Rayz2016 Posts: 6,957member

    Windows mishandles the codec, triggering what appears to be a memory overflow that enables system intrusion and, potentially, remote takeover. 

    Right, the gap between a memory overflow and an intrusion is a mile wide. Have they demonstrated an actual remote takeover?


    watto_cobra
Sign In or Register to comment.