--On Montag, 14. Juni 2004 01:28 -0700 bipin gautam [EMAIL PROTECTED]
wrote:
Multiple Antivirus Scanners DoS attack.
...
What's *really* new to
http://www.aerasec.de/security/advisories/decompression-bomb-vulnerability.html
?
Peter
--
Dr. Peter Bieringer
--- Dr. Peter Bieringer [EMAIL PROTECTED]
wrote:
--On Montag, 14. Juni 2004 01:28 -0700 bipin gautam
[EMAIL PROTECTED]
wrote:
Multiple Antivirus Scanners DoS attack.
...
What's *really* new to
http://www.aerasec.de/security/advisories/decompression-bomb-vulnerability.html
?
--- Dr. Peter Bieringer [EMAIL PROTECTED]
wrote:
--On Montag, 14. Juni 2004 01:28 -0700 bipin gautam
[EMAIL PROTECTED]
wrote:
Multiple Antivirus Scanners DoS attack.
...
What's *really* new to
http://www.aerasec.de/security/advisories/decompression-bomb-vulnerability.html
?
Multiple Antivirus Scanners DoS attack.
--- [Vulnerable Products] ---
Only tested on...
* Norton Antivirus 2002
* Norton Antivirus 2003
* Mcafee VirusScan 6
* Network Associates (McAfee) VirusScan Enterprise 7.1
* F-Prot 4.4.2 for Linux
* Rav Antivirus online Scanner [Couldn't
well The advisory makes no details and seems to be very naive touch.
On Monday 14 June 2004 02:13 pm, bipin gautam wrote:
Multiple Antivirus Scanners DoS attack.
* F-Prot 4.4.2 for Linux
linux F-Prot work perfectly well. Test before you make claims.
* Rav Antivirus online Scanner
* Windows Xp default ZIP manager [report's wrong
size
of compress ZIP files.]
if you mess with headers any compression API tells
you
the same wrong size. Check zlib, infoZip, rar, arj.
There is no way to get detect these changes.
Checking each file integrity
against the header
You can dos any machine with big enough files if they run out of
partition(linux) or hard disk or memory space(windows). I had somebody
show me this with a 20 gig bzipped null character attachment last year
on this list.
bipin gautam wrote:
Multiple Antivirus Scanners DoS attack.
---
do you have any idea how i created these compressed
archive??? i didn't modified the header info!!!
i created it using dd if=/dev/zero ..
Yeah right. I believe the first time I saw this reported was like 1998.
Why don't you check mailing list archives before making such a big fuzz
--- Jan Muenther [EMAIL PROTECTED] wrote:
do you have any idea how i created these
compressed
archive??? i didn't modified the header info!!!
i created it using dd if=/dev/zero ..
Yeah right. I believe the first time I saw this
reported was like 1998.
Why don't you check
It has been few reports F-Prot 4.4.2 for Linux has a problem!!!
F-PROT 4.4.2 worked fine for me, although it took a little time (about 5
minutes). I tried this with an older version 3.12d which found the same
results in 20 seconds. Also, in case you weren't aware, F-Prot Antivirus
for Linux is
friend in FD likes to see how did u create the zip header using `dd
if=/dev/zero`?
well not to forget u are listed in Top Ten Hoaxes Of February
http://www.governmentsecurity.org/forum/index.php?act=STf=25t=6955
On Monday 14 June 2004 06:27 pm, bipin gautam wrote:
* Windows Xp
11 matches
Mail list logo