>We got the same thing..
>
>Declude Virus v1.56i caught the the Exploit-MIME.gen virus !!! virus in
>Unknown File
>from [EMAIL PROTECTED] to: [EMAIL PROTECTED]
Actually, what was caught was an exploit. Exploits (or vulnerabilities)
may or may not contain a virus. In this case, it contained a partial
encoded virus that (again, in this case) could not do any damage. Whether
or not something like this gets detected depends on the AV software being used.
Some AV programs will detect this as a MIME exploit. Declude Virus --
which has built in protection for the MIME exploit, as people recently
found out when Declude Virus started catching the Frethem variant before
the virus definitions were updated -- does not detect this as a MIME
exploit, since it really isn't (it would have to be manually altered in
order to potentially be dangerous). In this case, it's actually a case of
the AV software being oversensitive -- it sees the E-mail as containing the
MIME exploit, because it was once there.
So the fact that the IMail mailing list delivered the E-mail doesn't mean
that it isn't detecting viruses.
-Scott
---
Declude: Anti-virus, Anti-spam and Anti-hijacking solutions for
IMail. http://www.declude.com
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
Please visit http://www.ipswitch.com/support/mailing-lists.html
to be removed from this list.
An Archive of this list is available at:
http://www.mail-archive.com/imail_forum%40list.ipswitch.com/
Please visit the Knowledge Base for answers to frequently asked
questions: http://www.ipswitch.com/support/IMail/
