On Mon, May 26, 2014 at 8:58 AM, Todd Aiken wrote:
>
> -Original Message-
> From: Shawn Webb
> Reply-To: ClamAV users ML
> Date: Friday, May 23, 2014 at 4:22 PM
> To: ClamAV users ML
> Subject: Re: [clamav-users] Clamav 0.98.3 on RHEL4 - OpenSSL problem
>
> >
> >Alright, we'll do one m
-Original Message-
From: Shawn Webb
Reply-To: ClamAV users ML
Date: Friday, May 23, 2014 at 4:22 PM
To: ClamAV users ML
Subject: Re: [clamav-users] Clamav 0.98.3 on RHEL4 - OpenSSL problem
>
>Alright, we'll do one more try, and if this doesn't work, then I'll set up
>a VM later tonight
You have answered your own question by research, a possible problem with
0.98.3... Bravo.
Proceed on then and report it as a failure to detect or in some ways a
False Negative. Mainly because as it stands, your whole thread is based
on a CVSS Scan issue. While this isn't the issue, but is a sympto
I've synchronized all the feeds (NVT, SCAP, CERT) to ensure that the
scan conditions are identical.
Firstly, with clamav-0.98.3, the same "high threat" was reported :
> NVT:SMTP antivirus scanner DoS
> OID:1.3.6.1.4.1.25623.1.0.11036
> Threat: High (CVSS: 7.2)
> Port: smtp (25/tcp)
>
>
