Malicious ebooks?

chrisridd · 12-30-2016, 06:05 AM

I just saw this tweet:

Quote:

Um... I just popped a shell on my Android tablet with a malicious EPUB ebook.

I wonder if many ereaders are written with security in mind?

simond · 12-30-2016, 07:37 AM

I doubt most are that secure.

frahse · 12-30-2016, 10:15 AM

Can you imagine this, where a malevolent eBook has taken the place of the TV.

JSWolf · 12-30-2016, 10:59 AM

I've always thought that javascript inside and eBook was a rather bad idea. It's a book, not a computer program.

chrisridd · 12-30-2016, 11:08 AM

Quote:

Originally Posted by JSWolf

I've always thought that javascript inside and eBook was a rather bad idea. It's a book, not a computer program.

Yes, Javascript is clearly a significant attack vector. I guess the JS engine can be restricted to only have read access to the filesystem (or no access) and similarly no access to the network, and then you need to prevent resource exhaustion type attacks.

But even plain old XML can also be abused in interesting ways. XML External Entities (e.g. "billion laughs") and XIncludes....

Cinisajoy · 12-30-2016, 12:27 PM

Did the person happen to tweet where they acquired this epub?

chrisridd · 12-30-2016, 01:52 PM

Quote:

Originally Posted by Cinisajoy

Did the person happen to tweet where they acquired this epub?

He said he used an existing exploit (like any script kiddie would do) and made it into his own epub.

Cinisajoy · 12-30-2016, 02:08 PM

Quote:

Originally Posted by chrisridd

He said he used an existing exploit (like any script kiddie would do) and made it into his own epub.

Oh ok. Though now it leads me to ask, what file type did he exploit? And where did he get the file?

I am totally confused.
He tweeted he got a malicious epub, but yet he made the epub?
It cannot be both.
So he made a malicious epub.

Or I am totally misunderstanding the first tweet. I read it as I downloaded a malicious epub from a website.

chrisridd · 12-30-2016, 02:14 PM

No, his first tweet only said he had "a" malicious epub without saying about where he got it from - you have to read the rest of the twitter thread to see he made it using an existing exploit.

I'd be interested in knowing what he did too!

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Kindle and malicious hot spots	Julius Caesar	Kindle Developer's Corner	20	07-18-2016 03:52 PM
MALICIOUS	jpraven	Self-Promotions by Authors and Publishers	0	11-19-2013 11:13 AM
Google's official app market found hosting malicious Android apps—again	monkeyluis	Android Devices	19	04-20-2012 09:33 PM

12-30-2016, 07:37 AM	#2
simond Fanatic Posts: 532 Karma: 1062755 Join Date: Aug 2005 Location: London, UK Device: Kobo Aura One, iPad, iPhone	I doubt most are that secure.

12-30-2016, 10:15 AM	#3
frahse occasional author Posts: 2,315 Karma: 2064403292 Join Date: Sep 2011 Location: Wandering God's glorious hills, valleys and plains. Device: A Franklin BI (before Internet) was the first. I still have it.	Can you imagine this, where a malevolent eBook has taken the place of the TV.

12-30-2016, 10:59 AM	#4
JSWolf Resident Curmudgeon Posts: 80,964 Karma: 150249633 Join Date: Nov 2006 Location: Roslindale, Massachusetts Device: Kobo Libra 2, Kobo Aura H2O, PRS-650, PRS-T1, nook STR, PW3	I've always thought that javascript inside and eBook was a rather bad idea. It's a book, not a computer program.

12-30-2016, 12:27 PM	#6
Cinisajoy Just a Yellow Smiley. Posts: 19,161 Karma: 83862859 Join Date: Jul 2015 Location: Texas Device: K4, K5, fire, kobo, galaxy	Did the person happen to tweet where they acquired this epub?

12-30-2016, 02:14 PM	#9
chrisridd Guru Posts: 983 Karma: 2209358 Join Date: Nov 2011 Location: London, UK Device: Kobo Aura, Kobo Aura ONE, PocketBook InkPad Color 3	No, his first tweet only said he had "a" malicious epub without saying about where he got it from - you have to read the rest of the twitter thread to see he made it using an existing exploit. I'd be interested in knowing what he did too!

Advert

Advert