[Full-disclosure] RE: Multiple AV Vendor Incorrect CRC32 BypassVulnerability.

From: bipin gautam (visitbipin_at_yahoo.com)
Date: 03/10/05

  • Next message: Debasis Mohanty: "[Full-disclosure] Stealing Free Articles and Auctioning It"
    Date: Thu, 10 Mar 2005 09:43:59 -0800 (PST)
    To: full-disclosure@lists.grok.org.uk
    
    

    get the new updates at,
    http://www.geocities.com/visitbipin/crc.html

    strangely, after modifying other general purpose bit
    flag in the zip header like,compression method,last
    mod file time,last mod file date,file name
    length,extra field length...
    [NOT: compressed size, uncompressed size which was
    pointed out by iDEFENSE before]

    strangely i found some other AV pron to the BUG.

    bipin

    __________________________________________________
    Do You Yahoo!?
    Tired of spam? Yahoo! Mail has the best spam protection around
    http://mail.yahoo.com
    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.grok.org.uk/full-disclosure-charter.html
    Hosted and sponsored by Secunia - http://www.secunia.com/


  • Next message: Debasis Mohanty: "[Full-disclosure] Stealing Free Articles and Auctioning It"