[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-disclosure] RE: Full-Disclosure Digest, Vol 8, Issue 48

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: RE: [Full-disclosure] RE: Full-Disclosure Digest, Vol 8, Issue 48
From: "Martijn Lievaart" <m@xxxxxxx>
Date: Mon, 31 Oct 2005 13:20:55 +0100 (CET)

>
>> The virus scanner determined the type of the file by
>> the header and it failed. That's bad news. I am
>> wondering however, when I execute that file, how does
>> the OS process the file? I guess my question is, if I
>> have a modified version of a virus, with whatever
>> header, if I try to execute that file, will the virus
>> code get executed?
>
> Lets see, do you think this would be executed?
> -------------------------------------------------------
> MZ%Nihilist%
> %Nihilist%@echo off
> %Nihilist%set num=0

(snip)

Hihi, clamav cought that... :-]

M4


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- RE: [Full-disclosure] RE: Full-Disclosure Digest, Vol 8, Issue 48
  - From: Nick FitzGerald

Prev by Date: [Full-disclosure] Security, Hacking & Social Engineering Presentation.
Next by Date: RE: [Full-disclosure] RE: Full-Disclosure Digest, Vol 8, Issue 48
Previous by thread: [Full-disclosure] RE: Full-Disclosure Digest, Vol 8, Issue 48
Next by thread: RE: [Full-disclosure] RE: Full-Disclosure Digest, Vol 8, Issue 48
Index(es):
- Date
- Thread