Compressed file used as a denial of service attack
I came across this article Compressed files strike another blow to AV. Apparently you can bring a system down by uploading a compressed file that knocks out the antivirus system.
But whats new about this? In the days of Bulletin Boards running DOS, I had come across a nasty pack called the Nowhereman Utilities. This included a tool to create a zip file. When extrated this file would be huge. (Well back then even 400 Mb was huge). The idea was upload this to a BBS, the antivirus would have to unzip it to scan it and wham all disk space used up.
So now after all these years the same trick still works? Thats awful.
0 Comments:
Post a Comment
<< Home