[Full-Disclosure] Norton AntiVirus Scanner Remote Denial Of ServiceVulnerability [Part: !!!]
rmassa at unixboxen.net
Mon Jul 12 17:33:37 BST 2004
exploit does not crash SAV corporate edition 184.108.40.2069, Scan engine 220.127.116.11.
Scan of file completes successfully.
On Fri, Jul 09, 2004 at 08:55:45PM -0700, bipin gautam wrote:
> --- "Peter B. Harvey (Information Security)"
> <peterharvey at emergency.qld.gov.au> wrote:
> > Could you please password protect it and email it to
> > me. Ill test on Trend Micro.
> > Peter
> dust download the file and hit scan, watch out You AV
> can trigger a DoS autometically.
> It has been confirmed Norton 2004 uses 100% cpu for a
> indefinate amount of time. (Tested in 3 Ghz processor)
> Please read updates in this advisory at:
> and test the exploit with some other AV scanners!
> Do you Yahoo!?
> Yahoo! Mail - 50x more storage than other providers!
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
"a professional is simply one who gets paid for doing what an amateur does for
-- Ursula K. Le Guin
Full-Disclosure is hosted and sponsored by Secunia.