Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Multiple Antivirus Scanners DoS attack. [summery]

From: npguy <npguy () websurfer com np>
Date: Tue, 15 Jun 2004 09:26:20 +0545
friend in FD  likes to see  how did u create the zip header using `dd 
if=/dev/zero`? 


well not to forget u are listed in  Top Ten Hoaxes Of February

http://www.governmentsecurity.org/forum/index.php?act=ST&f=25&t=6955



On Monday 14 June 2004 06:27 pm, bipin gautam wrote:

* Windows Xp default ZIP manager [report's wrong


size


of compress ZIP files.]


if you mess with headers any compression API tells
you
the same wrong size. Check zlib, infoZip, rar, arj.


There is no way to get detect these changes.
Checking each file integrity
against the header info will take significiant
anount of time. Anyway like
WinZIP the extraction routine seek file content
until the the next header
stats.  So that the altered file size will not able
to fool the routine i.e
Design Error.


do you have any idea how i created these compressed
archive??? i didn't modified the header info!!!
i created it using dd if=/dev/zero ..............

It has been few reports F-Prot 4.4.2 for Linux has a problem!!!




__________________________________
Do you Yahoo!?
Friends.  Fun.  Try the all-new Yahoo! Messenger.
http://messenger.yahoo.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Previous By Date Next
Previous By Thread Next

Current thread: