Ok, we are working on the issue, can you replicate it with an earlier version of Declude like .46 or .59 ?
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Andy Schmidt Sent: Friday, October 05, 2007 10:45 AM To: declude.virus@declude.com Subject: RE: [Declude.Virus] 4.3.62 countless false positives for vulnerabilties Hi Dave, Well, I dropped in 4.3.62 in the afternoon and throughout the afternoon was getting reports from people using VARIOUS email systems (not limited to Yahoo's mail service), that just happened to be the one that I had at my finger tips. I can also say that it happened to people sending mail from Lotus Notes 6. I worked with the Tech Guy at the client's client and he tried to send me simply emails with a zip or PDF attachment and nothing got past 4.3.62. File: "[No attachment]" Result: Found[Outlook 'MIME segment in MIME Postamble' Vulnerability] -----Original Message Headers----- Received: from DOMSVR1.L*******.COM [***.26.122.219] by Mail.Webhost.HM-Software.com with ESMTP (SMTPD-9.21) id A46A0358; Thu, 04 Oct 2007 14:43:54 -0400 To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Riverside Quote P/N: 147329 MIME-Version: 1.0 X-Mailer: Lotus Notes Release 6.5.5 November 30, 2005 Message-ID: <[EMAIL PROTECTED]> From: [EMAIL PROTECTED] Date: Thu, 4 Oct 2007 13:43:36 -0500 X-MIMETrack: Serialize by Router on DOMSVR1/domino(Release 6.5.6|March 06, 2007) at 10/04/2007 13:43:38 Content-Type: multipart/mixed; boundary="=_mixed 0066DE538625736A_=" --- This E-mail came from the Declude.Virus mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.Virus". The archives can be found at http://www.mail-archive.com. --- This E-mail came from the Declude.Virus mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.Virus". The archives can be found at http://www.mail-archive.com.
