Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Full Disclosure: Multiple AV Vendors ignoring tar.gz archives

Multiple AV Vendors ignoring tar.gz archives

From: Barrie Dempster <barrie_at_reboot-robot.net>
Date: Sat, 05 Feb 2005 17:38:51 +0000

By passing some archives through www.virustotal.com I discovered that
some AV companies ignore tar.gz's and possibly other archive formats
that aren't very common on windows systems (but supported by the common
archive tools).

If virus writers start using these formats AV companies could be slow to
react as in some cases they may have to write functionality into their
products that doesn't currently exist (support for scanning inside said
archives) this could delay signature updates.

Full write up here:
http://zeedo.blogspot.com/2005/02/multiple-av-vendors-ignoring-targz.html 

-- 
With Regards..
Barrie Dempster (zeedo) - Fortiter et Strenue
blog: http://zeedo.blogspot.com
site: http://www.bsrf.org.uk
[ gpg --recv-keys --keyserver www.keyserver.net 0x96025FD0 ]

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Received on Feb 05 2005
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]