[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] [TZO-05-2009] Clamav 0.94 and below - Evasion /bypass

To: full-disclosure <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] [TZO-05-2009] Clamav 0.94 and below - Evasion /bypass
From: Thierry Zoller <Thierry@xxxxxxxxx>
Date: Fri, 3 Apr 2009 19:20:01 +0200

JGB> hmm, I'm jealous: where can we get this time-travel machine?

It's open source, grab it at your local oss repositry. apt-get install
timetravel

JGB> 2009/4/2 Thierry Zoller <Thierry@xxxxxxxxx>:
>> 13/03/2009 : Clamav responds that the bug is reproducible and will be
>>             fixed in 0.95 to be released the 23/03/2009
>> 23/05/2009 : Asked clamav if the release was made and if credit was
>>             given
>>
>> 23/05/2009 : Clamav responds that the release was made, and that the
>>             credit was given in the changelog. (Tzo note: A post will
>>             be probably be made at http://www.clamav.net/category/security/
>>
>> 02/01/2009 : Release of this limited detail advisory



-- 
http://secdev.zoller.lu
Thierry Zoller

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] [TZO-05-2009] Clamav 0.94 and below - Evasion /bypass
  - From: Thierry Zoller
- Re: [Full-disclosure] [TZO-05-2009] Clamav 0.94 and below - Evasion /bypass
  - From: Jan G.B.

Prev by Date: Re: [Full-disclosure] [TZO-05-2009] Clamav 0.94 and below - Evasion /bypass
Next by Date: [Full-disclosure] [ MDVSA-2009:087 ] openssl
Previous by thread: Re: [Full-disclosure] [TZO-05-2009] Clamav 0.94 and below - Evasion /bypass
Next by thread: [Full-disclosure] [TZO-06-2009] IBM Proventia - Generic bypass (Limited disclosure - see details)
Index(es):
- Date
- Thread