For those of you following this thread, implemented in 16130
THANK YOU THOMAS!
On Sat, Apr 30, 2016 at 1:24 PM, K Post wrote:
> We're getting a lot of inbound viruses (and heuritstic detections of spam)
> caught by clamav. This suddenly started working a couple versions
Just a heads up, ImageMagick has a pretty significant vulnerability. Would
be hard to exploit on ASSP, but imagine that it's possible. Thoughts?
https://www.us-cert.gov/ncas/current-activity/2016/05/04/ImageMagick-Vulnerability
more info
this is the output of modified 4.28, same for docx:
May-10-16 09:21:43 [Worker_1] Info: will detect executables in compressed
files
May-10-16 09:21:43 [Worker_1] Info: analyzing compressed file
/opt/assp/tmp/zip_1_1462864903/File_di_input.xlsx at zip-level 0
May-10-16 09:21:43 [Worker_1] Info: