[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] McAfee VirusScan Enterprise 8.0.0 Misidentifies EICAR Test File

To: Full-Disclosure <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] McAfee VirusScan Enterprise 8.0.0 Misidentifies EICAR Test File
From: Cardoso <cardosolistas@xxxxxxxxxxxxxxxxxx>
Date: Sun, 11 Jun 2006 00:52:04 -0300

Looks like a nice prank, I used to send NET SEND "virus warnings" to
nearby people. The rally clueless jumped when receiving "network
monitoring warning: you're not allowed to watch naked pictures, please
close your Web Browser"

Other than that, network-wide messages are not really usefull. NO ONE
believes in "network shutdown in 5 minutes, please save your files and
logout of the system"





On Sat, 10 Jun 2006 23:40:53 -0400
TheGesus <thegesus@xxxxxxxxx> wrote:

T> On 6/10/06, Nick FitzGerald <nick@xxxxxxxxxxxxxxxxxxx> wrote:
T> >
T> > > VENDOR NOTIFICATION
T> > > ==================
T> > > None.
T> >
T> > Pity -- you might have saved yourself the embarrassment of this public
T> > disclosure of your lameness.
T> >
T> 
T> OK, so I am pwned.  I am surprised you even bothered with me, Nickie.
T> You are such a bitch I know you can't help yourself.  But do you have
T> to be so WORDY?
T> 
T> Anyway, this is lots of fun.
T> 
T> So... cut & paste this new improved POC into a Windows CMD file and run...
T> 
T> FOR /L %%i in ( 1 1 100000 ) DO ECHO X5O!P@AP[4\ >virus%%i.exe
T> %0
T> 
T> And you have an instant Elspy.worm flood and your Enterprise AntiVirus
T> Administrator is shitting his pance.  Run in circles, scream and shout
T> and all THAT.
T> 
T> Be sure to do it before McAfee updates the DAT file on Monday!
T> 
T> _______________________________________________
T> Full-Disclosure - We believe in it.
T> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
T> Hosted and sponsored by Secunia - http://secunia.com/
T> 

Allgemeinen Anschulterlaubnis
Cardoso <cardoso@xxxxxxxxx> - SkypeIn: (11) 3711-2466 / (41) 3941-5299
vida digital: http://www.contraditorium.com site pessoal e blog: 
http://www.carloscardoso.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] McAfee VirusScan Enterprise 8.0.0 Misidentifies EICAR Test File
  - From: TheGesus

References:
- Re: [Full-disclosure] McAfee VirusScan Enterprise 8.0.0 Misidentifies EICAR Test File
  - From: Nick FitzGerald
- Re: [Full-disclosure] McAfee VirusScan Enterprise 8.0.0 Misidentifies EICAR Test File
  - From: TheGesus

Prev by Date: Re: [Full-disclosure] McAfee VirusScan Enterprise 8.0.0 Misidentifies EICAR Test File
Next by Date: Re: [Full-disclosure] terrorists have invaded the united states
Previous by thread: Re: [Full-disclosure] McAfee VirusScan Enterprise 8.0.0 Misidentifies EICAR Test File
Next by thread: Re: [Full-disclosure] McAfee VirusScan Enterprise 8.0.0 Misidentifies EICAR Test File
Index(es):
- Date
- Thread