MobileRead Forums - View Single Post

Hpoonis · 01-08-2020, 03:26 AM

Hi all,

Regarding the latest changelog:

***************

Viewer: Fix a bug that could allow maliciously crafted EPUB files to read data from files on the computer. Thanks to dozernz for discovering this attack vector.

Closes tickets: 1857800

***************

Can anyone clarify this? I was under the impression that EPUB, etc were just benign files with formatting tags. How could an EPUB (via a reader) begin scanning non-related files?

01-08-2020, 03:26 AM	#1
Hpoonis Junior Member Posts: 3 Karma: 10 Join Date: Jan 2020 Device: none	Bug Fix 1857800 Hi all, Regarding the latest changelog: ************* Viewer: Fix a bug that could allow maliciously crafted EPUB files to read data from files on the computer. Thanks to dozernz for discovering this attack vector. Closes tickets: 1857800 ************* Can anyone clarify this? I was under the impression that EPUB, etc were just benign files with formatting tags. How could an EPUB (via a reader) begin scanning non-related files?