[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] RE: Multiple AV Vendor Incorrect CRC32 BypassVulnerability.

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] RE: Multiple AV Vendor Incorrect CRC32 BypassVulnerability.
From: bipin gautam <visitbipin@xxxxxxxxx>
Date: Thu, 10 Mar 2005 09:43:59 -0800 (PST)

get the new updates at,
http://www.geocities.com/visitbipin/crc.html

strangely, after modifying other general purpose bit
flag in the zip header like,compression method,last
mod file time,last mod file date,file name
length,extra field length... 
[NOT: compressed size, uncompressed size which was
pointed out by iDEFENSE before]         

strangely i found some other AV pron to the BUG.

bipin 

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://www.secunia.com/

Prev by Date: Re: [Full-disclosure] Reverse dns
Next by Date: [Full-disclosure] Stealing Free Articles and Auctioning It
Previous by thread: Re: [Full-disclosure] US pres election was hacked away byDumbya&cabal.
Next by thread: RE: [Full-disclosure] Re: Multiple AV Vendor Incorrect CRC32 BypassVulnerability.
Index(es):
- Date
- Thread