Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Microsoft AntiSpyware attacks Norton AV?
From: "Dave Korn" <davek_throwaway () hotmail com>
Date: Mon, 13 Feb 2006 00:05:19 -0000

"Joel R. Helgeson" joel () helgeson wrote in message 
news:00ac01c62edc$bc62eb40$1400a8c0 () appiant   
Is anyone else seeing/experiencing this?

When it scanned each system it found a Trojan called PWS.Bancos.A 
(Password Stealer) - Level: Severe

When it quarantined the bug, it also rendered the Symantec Anti-Virus 
helpless.

Symantec Antivirus is corrupt and not usable.

My take on what has happened:
<speculation>

Microsoft very quickly released signature version 5807 to correct the 
mistake.

  It's no longer speculation.
http://blog.washingtonpost.com/securityfix/2006/02/microsoft_antispyware_deleting_1.html

See also slashdot.

Anyone else seeing this?

  It's just that, a false positive.  Hits NAV pretty bad, you need to fully 
uninstall and reinstall it.

  No, let me correct that.  You need to fully uninstall it then throw it in 
the bin and get something better[*].  Oh, and don't let MS beta software run 
on any of your machines.


    cheers,
      DaveK

[*] - Personal opinion.
-- 
Can't think of a witty .sigline today....



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault