Multiple AV Vendor Incorrect CRC32 Bypass Vulnerability.
Description: if you create a zip archive with invalid CRC checksum...... some AV skip scanning the archive marking it as clean........ by this way, you can bypass antivirus gateways and slip in any attachment without scanning the archive.
Regards,
Dr. Peter Bieringer
--
Dr. Peter Bieringer Phone: +49-8102-895190
AERAsec Network Services and Security GmbH Fax: +49-8102-895199
Wagenberger Strasse 1 Mobile: +49-174-9015046
D-85662 Hohenbrunn E-Mail: pbieringer@xxxxxxxxxx
Germany Internet: http://www.aerasec.de_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://www.secunia.com/