not only stepped on their genitals.... but down right crushed them into a flattened pancake! I don't' know what's worse, deleting SVCHOST.EXE, or NOT properly QA'ing the DAT files so they're able to delete SVCHOST.exe..... oh, I think it's not QA'ing dats like they used to.... I'll tell you what, I really miss the old days that I'm affectionately calling the "Vinnie Days" for Avert / Mcafee Labs! Things ran really well back then let me tell you that for nothing! :-) Mike B
________________________________ From: [email protected] on behalf of David Harley Sent: Thu 4/22/2010 11:37 AM To: 'Juha-Matti Laurio'; 'The Security Community'; 'funsec' Subject: Re: [funsec] Apparently McAfee stepped on their genitals today... Generated a lot of BHSEO too. -- David Harley BA CISSP FBCS CITP ESET Research Fellow & Director of Malware Intelligence > -----Original Message----- > From: [email protected] > [mailto:[email protected]] On Behalf Of Juha-Matti Laurio > Sent: 22 April 2010 09:41 > To: The Security Community; funsec > Subject: Re: [funsec] Apparently McAfee stepped on their > genitals today... > > This is covered at > https://kc.mcafee.com/corporate/index?page=content&id=KB68780 > > Juha-Matti > > The Security Community [[email protected]] kirjoitti: > > http://isc.sans.org/ > > > > We have received several reports indicating some issues with McAfee > > DAT 5958 causing Windows XP SP3 clients to be locked out. It is > > affecting svchost.exe. Here is an example of the message: > > > > The file C:WINDOWSsystem32svchost.exe contains the > W32/Wecorl.a Virus. > > Undetermined clean error, OAS denied access and continued. Detected > > using Scan engine version 5400.1158 DAT version 5958.0000. > > _______________________________________________ > Fun and Misc security discussion for OT posts. > https://linuxbox.org/cgi-bin/mailman/listinfo/funsec > Note: funsec is a public and open mailing list. _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list. _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
