cR0w@reverseics@infosec.exchange Which part is real? The declaration? That it's peer journaled? Both seem likely.
K. Reid Wightman :verified: 🌻
:donor: :clippy:@cR0w@infosec.exchange that directory traversal exists in some (old) AV.
K. Reid Wightman :verified: 🌻 :donor: :clippy:@cR0w@infosec.exchange
(like here:
https://security.snyk.io/vuln/SNYK-UNMANAGED-CLAMAV-2381227
or here: https://www.clouddefense.ai/cve/2019/CVE-2019-1785
or here:
https://www.exploit-db.com/exploits/40741
)
a coworker of mine was once testing AV engines. this was a long while back. he named a piece of malware %s%s%s%s.exe and the av scanning engine crashed completely. it didn't check the file, and stopping all livescanning.
we are all going to die on this rock.
cR0w
