11-18-2019, 01:35 PM
From the past few years, WhatsApp has remained the favorite target for hackers and social intruders. The popular messaging service has recorded various data theft issues in the past. It has remained in headlines since recent weeks over the vulnerabilities and data thefts by Israeli spyware firm NSO. The messaging app is once again in the talks as Facebook has issued an official advisory regarding a critical bug posing threat from malicious MP4 files.
In detail, the MP4 can trigger tag by sending a specially crafted MP4 file. The potential hacker can inject code by parsing the elementary stream metadata of an MP4 file that could result in DoS (Denial-of-service attack) or can even initiate Remote Code Execution. It does not need any authentication to perform the attack remotely. The company has classified the vulnerability as ‘Critical’ due to the severe consequences if someone misuses the loophole.
Read
In detail, the MP4 can trigger tag by sending a specially crafted MP4 file. The potential hacker can inject code by parsing the elementary stream metadata of an MP4 file that could result in DoS (Denial-of-service attack) or can even initiate Remote Code Execution. It does not need any authentication to perform the attack remotely. The company has classified the vulnerability as ‘Critical’ due to the severe consequences if someone misuses the loophole.
Read