lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <200406150926.20603.npguy@websurfer.com.np>
From: npguy at websurfer.com.np (npguy)
Subject: Multiple Antivirus Scanners DoS attack. [summery]

friend in FD  likes to see  how did u create the zip header using `dd 
if=/dev/zero`? 


well not to forget u are listed in  Top Ten Hoaxes Of February

http://www.governmentsecurity.org/forum/index.php?act=ST&f=25&t=6955



On Monday 14 June 2004 06:27 pm, bipin gautam wrote:
> > > * Windows Xp default ZIP manager [report's wrong
> >
> > size
> >
> > > of compress ZIP files.]
> >
> > if you mess with headers any compression API tells
> > you
> > the same wrong size. Check zlib, infoZip, rar, arj.
> >
> >
> > There is no way to get detect these changes.
> > Checking each file integrity
> > against the header info will take significiant
> > anount of time. Anyway like
> > WinZIP the extraction routine seek file content
> > until the the next header
> > stats.  So that the altered file size will not able
> > to fool the routine i.e
> > Design Error.
>
> do you have any idea how i created these compressed
> archive??? i didn't modified the header info!!!
> i created it using dd if=/dev/zero ..............
>
> It has been few reports F-Prot 4.4.2 for Linux has a problem!!!
>
>
>
>
> __________________________________
> Do you Yahoo!?
> Friends.  Fun.  Try the all-new Yahoo! Messenger.
> http://messenger.yahoo.com/
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ