[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] WinAmp <=5.01 - Multiple Vulnerabilities

To: full-disclosure <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: RE: [Full-Disclosure] WinAmp <=5.01 - Multiple Vulnerabilities
From: Nick FitzGerald <nick@xxxxxxxxxxxxxxxxxxx>
Date: Fri, 26 Mar 2004 13:17:05 +1200

"Keith Pachulski" <keithp@xxxxxxxxxxxx> wrote:

> wow -- uber leet

Unlike subscribing to a full disclosure security list from behind a 
virus-scanning gateway then publicly posting your "surprise" at having 
some posts stopped by the virus scanner...

> -----Original Message-----
> From: full-disclosure-admin@xxxxxxxxxxxxxxxx <<...>>
> Sent: Thursday, March 25, 2004 3:04 AM
> To: full-disclosure
> Subject: [Full-Disclosure] WinAmp <=5.01 - Multiple Vulnerabilities
> 
> ANTI-VIRUS DETECTION ALERT
> 
> The anti-virus scanner was triggered by this file. The file was not
> cleaned and has been removed. See your system administrator for further
> information. 
> 
> Context: '[Message Body]'
> Detection(s): 'Exploit-CodeBase.gen (trojan)'

If you go to the web archive of the list and look at the original 
message, you will most likely find that the last two ro three lines of 
the PoC were to blame for this "detection".

-- 
Nick FitzGerald
Computer Virus Consulting Ltd.
Ph/FAX: +64 3 3529854

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- RE: [Full-Disclosure] WinAmp <=5.01 - Multiple Vulnerabilities
  - From: Keith Pachulski

Prev by Date: [Full-Disclosure] OpenLinux: mc Updated packages resolve local buffer overflow vulnerability
Next by Date: [Full-Disclosure] SGI Advanced Linux Environment security update #15
Previous by thread: RE: [Full-Disclosure] WinAmp <=5.01 - Multiple Vulnerabilities
Next by thread: [Full-Disclosure] Yahoo Mail! - Cross Site Scripting
Index(es):
- Date
- Thread