Giorgius
24-09-2004, 14.26.15
Kurt Seifried has reported a vulnerability in Sophos Anti-Virus, which can be exploited by malware to bypass the scanning functionality.
The vulnerability is caused due to an error within the handling of files and directories with reserved DOS device names and can be exploited by including malware in a file or directory with such a name (e.g. "prn" or "aux").
Reportedly, successful exploitation causes malware to not be detected by the email scanning and real-time protection functionality.
Leggi:
http://secunia.com/advisories/12622/
The vulnerability is caused due to an error within the handling of files and directories with reserved DOS device names and can be exploited by including malware in a file or directory with such a name (e.g. "prn" or "aux").
Reportedly, successful exploitation causes malware to not be detected by the email scanning and real-time protection functionality.
Leggi:
http://secunia.com/advisories/12622/