[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-Disclosure] Norton AntiVirus Scanner Remote Denial Of ServiceVulnerability [Part: !!!]
- To: full-disclosure@xxxxxxxxxxxxxxxx
- Subject: Re: [Full-Disclosure] Norton AntiVirus Scanner Remote Denial Of ServiceVulnerability [Part: !!!]
- From: Richard Massa <rmassa@xxxxxxxxxxxxx>
- Date: Mon, 12 Jul 2004 09:33:37 -0700
exploit does not crash SAV corporate edition 8.1.1.319, Scan engine 4.2.0.7.
Scan of file completes successfully.
On Fri, Jul 09, 2004 at 08:55:45PM -0700, bipin gautam wrote:
> --- "Peter B. Harvey (Information Security)"
> <peterharvey@xxxxxxxxxxxxxxxxxxxx> wrote:
> >
> > Could you please password protect it and email it to
> > me. Ill test on Trend Micro.
> >
> > Peter
>
> dust download the file and hit scan, watch out You AV
> can trigger a DoS autometically.
>
> It has been confirmed Norton 2004 uses 100% cpu for a
> indefinate amount of time. (Tested in 3 Ghz processor)
>
> Please read updates in this advisory at:
>
> http://www.geocities.com/visitbipin/Nav_dos_part_3.html
>
> and test the exploit with some other AV scanners!
>
> ------------
> bipin
>
>
>
> __________________________________
> Do you Yahoo!?
> Yahoo! Mail - 50x more storage than other providers!
> http://promotions.yahoo.com/new_mail
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>
--
"a professional is simply one who gets paid for doing what an amateur does for
love."
-- Ursula K. Le Guin
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html