Hi all,
I decided to run all of the tests located at testvirus.org against my mail
server. As expected, tests 24 and 25 got through, no surprise there. However, test
17 also made it through. This test is described as follows :
Test #17: Eicar virus hidden using the "CR Vulnerability" (attachment can be opened by
all versions of Microsoft Outlook and Outlook Express)
So, my question goes something like this... Should clamav have caught this
test? Running the same test from Declude, it was blocked.
I'm not 100% sure what this vulnerability is, or how it works, but I'm a
little concerned that this was not blocked. Can anyone give me a little insight into
this?
Thanks!
--
Jason Frisvold
Penteledata
_______________________________________________
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
