Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

RE: Re: Norton AntiVirus 2002 fails to scan files with ... [2'nd... UPDATED]
From: "Celeste Herbert" <celeste () canonlinbro co za>
Date: Tue, 16 Mar 2004 07:49:07 +0200

Hi 

Is there any mailing list I can subscribe to as a very basic user of linux??

Celeste

-----Original Message-----
From: full-disclosure-admin () lists netsys com
[mailto:full-disclosure-admin () lists netsys com] On Behalf Of bipin gautam
Sent: 15 March 2004 03:09 PM
To: full-disclosure () lists netsys com
Subject: Re: [Full-disclosure] Re: Norton AntiVirus 2002 fails to scan files
with ... [2'nd... UPDATED]




Hi,
Your statement is a bit unclear to me. The systems
you performed the
tests on, were those fully patched versions of NAV
2002? So, does this 
vulnerability still work on fully patched systems or
did Symantec patch 
it? Do you know if they ever released an advisory
about it or did they 
patch it silently.

Regards,
Erwin


well... as i released the bug to  1 year ago, i am
sure they silently patched the bug.... I tested the
issue with nav 2003 but it didn't worked..... IT DOES
WORK ON NAV 2002. nav manual scan doesn't crash while preforming a manual
scan on fully patched NAV 2002! I posted the issue to some discussion's
fourms 1 year ago, 100% people out there reported it did worked.


you can get the advisory on...

http://www.geocities.com/visitbipin/nav_bugs.html

http://www.geocities.com/visitbipin

I even got a email responce from david ahemad [da () securityfocus com ] about
a year ago... they are testing the issue AND THEY WANT SOME TIME before it
goes to the bugtraq list! but then....... i got NO RESPONCE FROM HIM!


[proof of... 1 year ago i released the issue...]

http://www.computercops.biz/postt2012.html
http://forum.sans.org/discus/messages/79/6916.html?1051892230
http://neworder.box.sk/board.php?thread=132773&did=poll24&disp=132773&closed
=1

http://www.google.com.np/search?q=nav+bug+hUNT3R&ie=UTF-8&oe=UTF-8&hl=ne


---------------------
here is the email from symantec...
---------------------
From :  Dave Ahmad <da () securityfocus com>
Sent :  10 January 2003 21:45:34 
To :  Bipin Gautam <visitbipin () hotmail com> 
Subject :  Re: i found a bug in NORTON ANTIVIRUS FOR
WINXP 
  
  |  |  | Inbox  
 
MIME-Version: 1.0 
Received: from securityfocus.com ([205.206.231.9]) by
mc1-f16.law16.hotmail.com with Microsoft SMTPSVC(5.0.2195.5600); Fri, 10 Jan
2003 13:55:02 -0800 
Received: (qmail 14059 invoked by uid 118); 10 Jan
2003 21:45:34 -0000 
In-Reply-To:
<20030110131438.23871.qmail () www securityfocus com> 
Message-ID:
<Pine.LNX.4.43.0301101445130.17072-100000 () mail securityfocus com>

Return-Path: da () securityfocus com 
X-OriginalArrivalTime: 10 Jan 2003 21:55:02.0087 (UTC)
FILETIME=[ED320570:01C2B8F2] 

----------------------------------------------------------------------------
----
 
View E-mail Message Source  
Content-Type: TEXT/PLAIN; charset=US-ASCII

 
Hi Bipin,

Do you mind if we verify this before it goes out over
the list?

David Mirza Ahmad
Symantec

0x26005712
8D 9A B1 33 82 3D B3 D0 40 EB  AB F0 1E 67 C6 1A 26 00
57 12

On 10 Jan 2003, Bipin Gautam wrote:



 think after testing this with 3 other pc's i think
i have found a bud in
product ./// NAV 2002 for winxp


 
 
 
-----------snip--------------------------------
what do you say???

NAV IS ...........

bipin

__________________________________
Do you Yahoo!?
Yahoo! Mail - More reliable, more storage, less spam http://mail.yahoo.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

________________________________________________

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault