- Joined
- 6 Dec 2003
- Messages
- 3,508
Anti-Virus Scanner Remote Denial Of Service
Vulnerability
Symantec Norton AntiVirus 2003 Professional Edition
Symantec Norton AntiVirus 2002
*not vulnerable
Mcafee 7*
Mcafee 8*
Risk Impact: Medium
Remote: yes
Description:
While having a virus scan [automatic/manual] of some
specially crafted compressed files; NAV triggers a DoS
using 100% CPU for a very long time. Morover, NAV is
unable to stop the scan in middle, even if the user
wishes to manually stop the virus scan. Then, in this
situation the only alternate is to kill the process.
contacted SYMANTEC in any of my
advisories since their "security responce team" is too
slow to responce any reported incidence. PLEASE:
...test this issue with other AV / trojan scanners as
they might also be vulnerable.
Vulnerability
Symantec Norton AntiVirus 2003 Professional Edition
Symantec Norton AntiVirus 2002
*not vulnerable
Mcafee 7*
Mcafee 8*
Risk Impact: Medium
Remote: yes
Description:
While having a virus scan [automatic/manual] of some
specially crafted compressed files; NAV triggers a DoS
using 100% CPU for a very long time. Morover, NAV is
unable to stop the scan in middle, even if the user
wishes to manually stop the virus scan. Then, in this
situation the only alternate is to kill the process.
contacted SYMANTEC in any of my
advisories since their "security responce team" is too
slow to responce any reported incidence. PLEASE:
...test this issue with other AV / trojan scanners as
they might also be vulnerable.
