Re Vulnerability: “Multiple Vendor Anti-Virus Software Detection Evasion Vulnerability through forged magic byte.”
Since the [Home] version I’m currently running is ver./Build: Jul2005 (4.6.691), and my vir database is: ver.: 0543-2, Compilation date: 10/27/2005, and the version [they] mention on this web page http://www.securityelf.org/magicbyteadv.html
as “Not vulnerable” is “Avast (ver. 4.6.655, vir databas 0525-5 06/25/2005)”, am I [also] safe (since [my] version is newer)?
If this is a dumb question, please excuse my ignorance.
FYI: I discovered the vulnerability today at the Internet Storm Center http://isc.sans.org/
(the 3rd article down).
Exactly, and FYI it has nothign to do with the physical size of the file since most of our avatars are uploaded somewhere on some outside image hosting server.
However, it has a lot with other people’s resolutions. Believe it or not, some people are still on 800x600 pixels resolution and few forum pals are even on 640x480 pixels. Their old monitors doesn’t allow them to use higher resolutions, so we have to think of them as well. If you use let’s say 500x300 pixels large avatar, all those posts you make will be shifted to the right, and no one will be able to see anything unless they scrolls left/right all the time. It could be very annoying sometimes… that’s why…
Thanks for your understanding and welcome to forums !
Thank you for your contribution, and welcome to the forum.
Very interesting posting. That my dear friend every security aware user should have a couple of file analyzing programs on his comp, is something not everybody knows.
I myself use FileAlyzer from PepiMKsoftware, I use ViewFile Hex Viewer and Hex Workshop. If your computer is well secured, you only should view those files you download onto your machine.
Avast Webshield inside the browser will keep you safe.
HPHS1975td, be sure with this knowledge the Magic of the magic byte won’t bite you and me.