Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

RE: NAI Webshield SMTP for WinNT MIME header vuln
From: Alan Monaghan <AlanM () Gardnerweb com>
Date: Tue, 4 Dec 2001 15:10:45 -0500 
Note: the newest virus (w32/gone.a-mm) is blowing thru the WebShield product
that runs on NT in front of our email server.
We have just updated to the newest DAT files from McAfee . 4174. 

It seems to be a continuation of the other problem. Bottom line here, we are
using GroupShield in conjunction with WebShield and it is set to delete most
extensions on sight. The only way we saved ourselves from what looks to be a
very bad outbreak.

FYI




       Be like water my friend ...
Alan G. Monaghan
   MCSE+I - Win4.0; MCSE - Win2k
    BJCP # C0389  (Recognized)
Gardner Publications, Inc.
Internet Administrator 

?  Phone        1-513-527-8867 
?  Fax          1-513-527-8801 
(  Car          1-513-520-6866 
?  Cell         1-513-378-0919  
? E-mail        AlanM () Gardnerweb com
? URL           http://Bullwinkle.GardnerWeb.Com/
 


 -----Original Message-----
From:   Jari Helenius [mailto:jari.helenius () mawaron com] 
Sent:   Saturday, December 01, 2001 11:38 AM
To:     bugtraq () securityfocus com
Subject:        RE: NAI Webshield SMTP for WinNT MIME header vuln that
allowsBadTrans to pass

After this message was published in Bugtraq, one person from NAI Europe
contacted me. They asked sample of virus (which I had sent them already

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]