[prev in list] [next in list] [prev in thread] [next in thread] 

List:       focus-virus
Subject:    RE: AV software exploits on the horizon?
From:       "pete" <pete () ideahamster ! org>
Date:       2002-02-08 10:40:53
[Download RAW message or body]

Rob,
I am just working on the Open Source Security Testing Methodology Manual
(OSSTMM) 2.0 rc4 and am struggling a bit with testing Containment Measures.
You bring up an excellent point about the possibility for AV software
abuse-- something many pen-testers have long understood.  The concept is
similar to your work.  Perhaps you have some ideas for testing these things
which would benefit many people in the open source methodology we are
creating.  Or is it just not possible?

Sincerely,
-pete.
Director of the Ideahamster Organization
http://www.ideahamster.org


-----Original Message-----
From: Junkmail Rosenberger [mailto:junkmail@barnowl.com]
Sent: Thursday, February 07, 2002 10:48 PM
To: focus-virus@securityfocus.com
Subject: AV software exploits on the horizon?


<Forget the security holes for a moment.  Let's just talk about DoS attacks.
<Marx feels many antivirus firms to this day overlook "DoS governors" for
<their products despite my call for them in 1999.  We may finally see a
<change if black hats start exploiting AV software vulnerabilities.

[prev in list] [next in list] [prev in thread] [next in thread]