On Tue, 31 Aug 2004 at 13:55:39 -0500, Daniel J McDonald wrote: [...] > Incidentally, I've gotten a number of .chm files lately in a unicode > message. Clamav hasn't twigged on them, but I ban them with amavis-new > anyway. Are there any known exploits with .chm files, or is that just > another way to move SPAM around?
Yes, there are known exploits with .chm files. An example notice is at http://www.us-cert.gov/cas/techalerts/TA04-099A.html -- Tomasz Papszun SysAdm @ TP S.A. Lodz, Poland | And it's only [EMAIL PROTECTED] http://www.lodz.tpsa.pl/iso/ | ones and zeros. [EMAIL PROTECTED] http://www.ClamAV.net/ A GPL virus scanner ------------------------------------------------------- This SF.Net email is sponsored by BEA Weblogic Workshop FREE Java Enterprise J2EE developer tools! Get your free copy of BEA WebLogic Workshop 8.1 today. http://ads.osdn.com/?ad_id=5047&alloc_id=10808&op=click _______________________________________________ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
