Security analysts descover serious exploit in Second Life

Posted Dec 2, 2007 at 2:55PM by QJ Staff Listed in: Titles, News Tags: Linden Lab

0

Second Life players, be warned: security analysts have spotted a serious exploit in Linden Lab's highly-popular Second Life. This exploit is rooted in Apple's third-party QuickTime media player, which can be used to embed media files into Second Life objects.

Without sounding too tech-y, here's what the exploit does: once a victim plays the malicious media file altered to hack Second Life avatars, the hacker is not only granted complete access to the victim's Second Life avatar, but also to the victim's computer as well.

You can check out the video at the bottom of this article to see an example of how the attacker freezes the victim's avatar and manipulates the hapless victim into handing out 12 Linden Dollars.

The security analysts as Security Evaluators have notified Second Life about this exploit. Until it is patched, it is recommended not to use the QuickTime application, and uncheck the "Play Streaming Video When Available" option in the Preferences' Audio & Video section.

Via Security Evaluators

Comments

No Comments, be the first to Comment

Add New Comment

You must be logged in to post comments

39 Jumps PS3 is year's best platform, Wii the worst according to Metacritic

5 Jumps NCsoft rolling out Christmas MMO events

5 Jumps OverClocked ReMix celebrates 10 years of video game music

4 Jumps New Splinter Cell: Conviction details revealed, 4 co-op feature confirmed

3 Jumps Stevie Wonder proposes: video games accessible for disabled

2 Jumps Play World of Warcraft Offline

1 Jumps Trinigy to Showcase Vision Engine at the London Games Festival

1 Jumps Final Fantasy XI version update released

1 Jumps Knight Online: Reign Of The Fire Drake

1 Jumps OnNet announces successful Manga Fighter closed beta, new contests

The QJ.net Network
Site	Feed
QJ.NET	RSS
Nintendo DS	RSS
PlayStation 3	RSS
PSP Updates	RSS
Wii	RSS
Xbox 360	RSS
MMORPG	RSS
Personal Computer Games	RSS
iPhone - iPod Touch	RSS
QJ.NET Forums	RSS

Add QJ.NET

User Favorites - December

Most Commented
Brazilian senator wants cr..	(62)
NPD Study: US kids as youn..	(44)
More Estavillo subpoenas -..	(23)
PS3 is year's best platfor..	(17)
Stevie Wonder proposes: vi..	(15)
Erik Estavillo subpoenas B..	(11)
Smithsonian museum to hold..	(5)
NCsoft rolling out Christm..	(3)
OverClocked ReMix celebrat..	(3)
Valve looking at MMORPG sc..	(3)
Watch: Guild Wars 2 'Facti..	(2)
Erik Estavillo now sues Bl..	(2)
New Splinter Cell: Convict..	(2)
Video: World of Warcraft F..	(1)

User Favorites - December

Top Jumps
PS3 is year's best platfor..	(66)
Brazilian senator wants cr..	(45)
Erik Estavillo subpoenas B..	(40)
More Estavillo subpoenas -..	(35)
OverClocked ReMix celebrat..	(33)
Stevie Wonder proposes: vi..	(29)
NPD Study: US kids as youn..	(26)
World of Warcraft's Fall o..	(21)
Play World of Warcraft Off..	(17)
Smithsonian museum to hold..	(14)
Lineage 2: Hellbound updat..	(9)
Video: World of Warcraft F..	(7)
Star Trek Online Collector..	(6)
NCsoft rolling out Christm..	(5)
Watch: Lots of elves, orcs..	(5)
Erik Estavillo now sues Bl..	(5)
New Splinter Cell: Convict..	(4)
Watch: Guild Wars 2 'Facti..	(3)
EVE Online: Dominion Patch..	(2)
Nintendo DS' First MMORPG..	(2)
Cabal Online update: Patch..	(2)
Flagship releases Hellgate..	(2)
First screens for Kung Fu..	(2)
Hellgate: London Patch 1.2..	(2)
There's just no other way..	(2)

Username:

Password:


Remember Me?

Forgot password
New user registration