Bugtraq mailing list archives

Re: [Full-Disclosure] [ GLSA 200501-46 ] ClamAV: Multiple issues

From: Dack <dackbug () ereomega net>
Date: Tue, 01 Feb 2005 14:41:20 -0800

By sending a base64 encoded image file in a URL an attacker could evade
virus scanning.

It's somewhat harsh to single out ClamAV for this issue. AFAICT, the
only two virus scanners that do currently protect against this are


What mail clients, if any, would execute a virus encoded in this manner?
Is this a gaping hole in other mail anti-virus systems, or do most
clients just ignore this kind of data?

Current thread:

Re: [Full-Disclosure] [ GLSA 200501-46 ] ClamAV: Multiple issues Trog (Feb 01)
- Re: [Full-Disclosure] [ GLSA 200501-46 ] ClamAV: Multiple issues Dack (Feb 01)
  - Re: [Full-Disclosure] [ GLSA 200501-46 ] ClamAV: Multiple issues Darren Bounds (Feb 02)
  - Re: [Full-Disclosure] [ GLSA 200501-46 ] ClamAV: Multiple issues Trog (Feb 02)
    - Re: [Full-Disclosure] [ GLSA 200501-46 ] ClamAV: Multiple issues exon (Feb 02)