[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] Norton AntiVirus Scanner Remote Denial Of ServiceVulnerability [Part: !!!]

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: RE: [Full-Disclosure] Norton AntiVirus Scanner Remote Denial Of ServiceVulnerability [Part: !!!]
From: bipin gautam <visitbipin@xxxxxxxxx>
Date: Fri, 9 Jul 2004 20:55:45 -0700 (PDT)

--- "Peter B. Harvey (Information Security)"
<peterharvey@xxxxxxxxxxxxxxxxxxxx> wrote:
> 
> Could you please password protect it and email it to
> me. Ill test on Trend Micro.
> 
> Peter

dust download the file and hit scan, watch out You AV
can trigger a DoS autometically.

It has been confirmed Norton 2004 uses 100% cpu for a
indefinate amount of time. (Tested in 3 Ghz processor)

Please read updates in this advisory at:

http://www.geocities.com/visitbipin/Nav_dos_part_3.html

and test the exploit with some other AV scanners!

------------
bipin

__________________________________
Do you Yahoo!?
Yahoo! Mail - 50x more storage than other providers!
http://promotions.yahoo.com/new_mail

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Norton AntiVirus Scanner Remote Denial Of ServiceVulnerability [Part: !!!]
  - From: Richard Massa

Prev by Date: Re: [Full-Disclosure] List-based spam: [IT Network & Security Professional Announcement (fwd)]
Next by Date: Re: [Full-Disclosure] Another IE trick (Re: IE sucks : sun java virtual machine insecure tmp file creation)
Previous by thread: RE: [Full-Disclosure] Norton AntiVirus Scanner Remote Denial Of ServiceVulnerability [Part: !!!]
Next by thread: Re: [Full-Disclosure] Norton AntiVirus Scanner Remote Denial Of ServiceVulnerability [Part: !!!]
Index(es):
- Date
- Thread