Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Antivirus/Trojan/Spyware scanners DoS!

From: <sk3tch () sk3tch net>
Date: Mon, 14 Jun 2004 00:01:47 -0500
Also, just tested the following:

Symantec AntiVirus Corporate Edition 9.0.0.338 on Windows XP SP1 + all
latest patches (on VMware GSX Server 3.0.0.0 build 7592)
Engine: 1.2.0.13
Defs: 06/13/04 rev 17

It found 5 infected items (bipin.zip with the Eicar test string) and
quarantined the file.  It took approximately 1 minute to scan it.  No
crash...system stable after complete scan.

--

Network Associates (McAfee) VirusScan Enterprise 7.1 on Windows XP SP2
v.2142 (on VMware Workstation 4.5.1 build 7568 for Linux)
Engine: 4.3.20
Defs: 06/09/04 (4365)

This one scanned for a looong time.  I walked away and came back.  Over
20+ minutes.  It scanned 1278 items and found 10 as being infected (as
Eicar test file).  No crash...system stable after scan complete.



-----Original Message-----
From: full-disclosure-admin () lists netsys com on behalf of bipin gautam
Sent: Sun 6/13/2004 5:30 AM
To: full-disclosure () lists netsys com
Subject: [Full-disclosure] Antivirus/Trojan/Spyware scanners DoS!
 
Hello everybody,

I wounder how many Antivirus/Trojan/Spyware scanners
will choak to death while having a manual scan of the
file:

http://www.geocities.com/visitbipin/SERVER_dwn.zip

I was woundering, what would be the results if such
file gets stucked in an "AV gateway" (O;

please, report your findings..... 

regards,
Bipin Gautam

http://www.geocities.com/visitbipin/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Previous By Date Next
Previous By Thread Next

Current thread: