|
If you think that scanning a zip file makes
you safe from viruses think twice. Zip files with long
names can trick the virus scan and offer a way around it then
bing bang boom you have been nailed. Mark Tesla and Chad
Loder from rapid 7 discovered the vulnerability that Microsoft
Apple and IBM are all susceptible to.
Every mail virus scanner Rapid7 has tested lets a virus
file sneak through if it's in a ZIP file with a long
filename. The Antiviral Scanners only catch the test files that are
in a "standard" ZIP file with short entry names.
For the same reason Antiviral
software cant cope with the long file names on a zip file
and still function properly, long names on zips have been
known to effect a plethora of other software in a broad
range of genres and applications.
Keep the zip file names small!
|
