Full Disclosure mailing list archives

RE: WinAmp <=5.01 - Multiple Vulnerabilities

From: Nick FitzGerald <nick () virus-l demon co uk>
Date: Fri, 26 Mar 2004 13:17:05 +1200

"Keith Pachulski" <keithp () corp ptd net> wrote:

wow -- uber leet


Unlike subscribing to a full disclosure security list from behind a 
virus-scanning gateway then publicly posting your "surprise" at having 
some posts stopped by the virus scanner...

-----Original Message-----
From: full-disclosure-admin () lists netsys com <<...>>
Sent: Thursday, March 25, 2004 3:04 AM
To: full-disclosure
Subject: [Full-disclosure] WinAmp <=5.01 - Multiple Vulnerabilities

ANTI-VIRUS DETECTION ALERT

The anti-virus scanner was triggered by this file. The file was not
cleaned and has been removed. See your system administrator for further
information. 

Context: '[Message Body]'
Detection(s): 'Exploit-CodeBase.gen (trojan)'


If you go to the web archive of the list and look at the original 
message, you will most likely find that the last two ro three lines of 
the PoC were to blame for this "detection".


-- 
Nick FitzGerald
Computer Virus Consulting Ltd.
Ph/FAX: +64 3 3529854

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

WinAmp <=5.01 - Multiple Vulnerabilities Rafel Ivgi, The-Insider (Mar 25)
- <Possible follow-ups>
- RE: WinAmp <=5.01 - Multiple Vulnerabilities Keith Pachulski (Mar 25)
  - RE: WinAmp <=5.01 - Multiple Vulnerabilities Nick FitzGerald (Mar 25)