[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-Disclosure] Z***ING EMAILS !
- To: full-disclosure@xxxxxxxxxxxxxxxx
- Subject: Re: [Full-Disclosure] Z***ING EMAILS !
- From: "I.R. van Dongen" <vdongen@xxxxxxxxx>
- Date: Sat, 06 Mar 2004 19:04:48 +0100
http-equiv@xxxxxxxxxx wrote:
Saturday, March 06, 2004
The seems to be a lot of excitement at the moment regarding .zip
files and emails. What if the actual .zip file is the email or
the email is the actual .zip file:
MIME-Version: 1.0
Content-Type: application/x-zip-compressed
Content-Transfer-Encoding: binary
X-Source: 06.03.04 http://www.malware.com
PK��� � ¯.áSÃ�â� D � malware.exeí•[L�f�†_�Qk�
�Ç��Ž#Ì002�†áðª��µ, €ˆU�lQ
Working example:
http://www.malware.com/eml.zip
How would this work?
afaik no emailsoftware will unpack a zip archive by default.
Even then, It has to be passwordless zip, and the zip will be unpacked
by the virusscanner too.
Gr,
Ivo
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html