lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <20040315130927.38425.qmail@web20212.mail.yahoo.com>
From: visitbipin at yahoo.com (bipin gautam)
Subject: Re: Norton AntiVirus 2002 fails to scan files with ... [2'nd... UPDATED]

> >
> Hi,
> Your statement is a bit unclear to me. The systems
> you performed the 
> tests on, were those fully patched versions of NAV
> 2002? So, does this 
> vulnerability still work on fully patched systems or
> did Symantec patch 
> it? Do you know if they ever released an advisory
> about it or did they 
> patch it silently.
> 
> Regards,-
> Erwin
> 
> 
well... as i released the bug to  1 year ago, i am
sure they silently patched the bug.... I tested the
issue with nav 2003 but it didn't worked..... IT DOES
WORK ON NAV 2002. nav manual scan doesn't crash while
preforming a manual scan on fully patched NAV 2002! I
posted the issue to some discussion's fourms 1 year
ago, 100% people out there reported it did worked.


you can get the advisory on...

http://www.geocities.com/visitbipin/nav_bugs.html

http://www.geocities.com/visitbipin

I even got a email responce from david ahemad
[da@...urityfocus.com ] about a year ago... they are
testing the issue AND THEY WANT SOME TIME before it
goes to the bugtraq list! but then....... i got NO
RESPONCE FROM HIM!


[proof of... 1 year ago i released the issue...]

http://www.computercops.biz/postt2012.html
http://forum.sans.org/discus/messages/79/6916.html?1051892230
http://neworder.box.sk/board.php?thread=132773&did=poll24&disp=132773&closed=1

http://www.google.com.np/search?q=nav+bug+hUNT3R&ie=UTF-8&oe=UTF-8&hl=ne


---------------------
here is the email from symantec...
---------------------
>From :  Dave Ahmad <da@...urityfocus.com> 
Sent :  10 January 2003 21:45:34 
To :  Bipin Gautam <visitbipin@...mail.com> 
Subject :  Re: i found a bug in NORTON ANTIVIRUS FOR
WINXP 
  
  |  |  | Inbox  
 
MIME-Version: 1.0 
Received: from securityfocus.com ([205.206.231.9]) by
mc1-f16.law16.hotmail.com with Microsoft
SMTPSVC(5.0.2195.5600); Fri, 10 Jan 2003 13:55:02
-0800 
Received: (qmail 14059 invoked by uid 118); 10 Jan
2003 21:45:34 -0000 
In-Reply-To:
<20030110131438.23871.qmail@....securityfocus.com> 
Message-ID:
<Pine.LNX.4.43.0301101445130.17072-100000@...l.securityfocus.com>

Return-Path: da@...urityfocus.com 
X-OriginalArrivalTime: 10 Jan 2003 21:55:02.0087 (UTC)
FILETIME=[ED320570:01C2B8F2] 

--------------------------------------------------------------------------------
 
View E-mail Message Source  
Content-Type: TEXT/PLAIN; charset=US-ASCII

 
Hi Bipin,

Do you mind if we verify this before it goes out over
the list?

David Mirza Ahmad
Symantec

0x26005712
8D 9A B1 33 82 3D B3 D0 40 EB  AB F0 1E 67 C6 1A 26 00
57 12

On 10 Jan 2003, Bipin Gautam wrote:

>
>
>  think after testing this with 3 other pc's i think
i have found a bud in
> product ./// NAV 2002 for winxp
>

 
 
 
-----------snip--------------------------------
what do you say???

NAV IS ...........

bipin

__________________________________
Do you Yahoo!?
Protect your identity with Yahoo! Mail AddressGuard
http://antispam.yahoo.com/whatsnewfree


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ