[Full-disclosure] McAfee VirusScan Enterprise 8.0.0 Misidentifies EICAR Test File

[TheGesus]

It can be even more fun in an ePolicy Orchestrator (ePO) environment!
Use it during the last week of the quarter and screw up the quarterly
AV reports!  Someone is guaranteed to shit their pance, although you
may not be around to appreciate the ensuing hilarity.

And the improved version (see my response to Nickie FucksGerald's
pwnage) is memorizable!  Keep it in your head, bang it out on a
keyboard of an unattended PC (you know, the one in Shipping &
Receiving), minimize the DOS box, walk away, and BAM!  Instant
Elspy.worm "infection".

Pity it doesn't really have anything to do with EICAR, though.  Mea culpa.

On 6/10/06, Cardoso <cardosolistas at contraditorium.com> wrote:
>
> Looks like a nice prank, I used to send NET SEND "virus warnings" to
> nearby people. The rally clueless jumped when receiving "network
> monitoring warning: you're not allowed to watch naked pictures, please
> close your Web Browser"
>
> Other than that, network-wide messages are not really usefull. NO ONE
> believes in "network shutdown in 5 minutes, please save your files and
> logout of the system"
>