Full Disclosure mailing list archives
Re: Norton AntiVirus Scanner Remote Denial Of ServiceVulnerability [Part: !!!]
From: Richard Massa <rmassa () unixboxen net>
Date: Mon, 12 Jul 2004 09:33:37 -0700
exploit does not crash SAV corporate edition 8.1.1.319, Scan engine 4.2.0.7. Scan of file completes successfully. On Fri, Jul 09, 2004 at 08:55:45PM -0700, bipin gautam wrote:
--- "Peter B. Harvey (Information Security)" <peterharvey () emergency qld gov au> wrote:Could you please password protect it and email it to me. Ill test on Trend Micro. Peterdust download the file and hit scan, watch out You AV can trigger a DoS autometically. It has been confirmed Norton 2004 uses 100% cpu for a indefinate amount of time. (Tested in 3 Ghz processor) Please read updates in this advisory at: http://www.geocities.com/visitbipin/Nav_dos_part_3.html and test the exploit with some other AV scanners! ------------ bipin __________________________________ Do you Yahoo!? Yahoo! Mail - 50x more storage than other providers! http://promotions.yahoo.com/new_mail _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
-- "a professional is simply one who gets paid for doing what an amateur does for love." -- Ursula K. Le Guin _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- RE: Norton AntiVirus Scanner Remote Denial Of ServiceVulnerability [Part: !!!] bipin gautam (Jul 08)
- <Possible follow-ups>
- RE: Norton AntiVirus Scanner Remote Denial Of ServiceVulnerability [Part: !!!] bipin gautam (Jul 09)
- RE: Norton AntiVirus Scanner Remote Denial Of ServiceVulnerability [Part: !!!] bipin gautam (Jul 09)
- Re: Norton AntiVirus Scanner Remote Denial Of ServiceVulnerability [Part: !!!] Richard Massa (Jul 12)
- Re: Norton AntiVirus Scanner Remote Denial Of ServiceVulnerability [Part: !!!] Matt Cuttler (Jul 12)
- Re: Norton AntiVirus Scanner Remote Denial Of ServiceVulnerability [Part: !!!] Richard Massa (Jul 12)