Home page logo

fulldisclosure logo Full Disclosure mailing list archives

RE: Multiple AV Vendor Incorrect CRC32 BypassVulnerability.
From: bipin gautam <visitbipin () yahoo com>
Date: Thu, 10 Mar 2005 09:43:59 -0800 (PST)

get the new updates at,

strangely, after modifying other general purpose bit
flag in the zip header like,compression method,last
mod file time,last mod file date,file name
length,extra field length... 
[NOT: compressed size, uncompressed size which was
pointed out by iDEFENSE before]         

strangely i found some other AV pron to the BUG.


Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://www.secunia.com/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]