[21618] in bugtraq
ZoneAlarm Pro's MailSafe
daemon@ATHENA.MIT.EDU (bacano)
Wed Jul 18 14:43:45 2001
Message-ID: <003701c10fa1$fa258a00$c60116c3@piii550>
From: "bacano" <bacano@esoterica.pt>
To: <bugtraq@securityfocus.com>
Date: Wed, 18 Jul 2001 16:53:37 +0100
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
hi2all
MailSafe is a feature on ZoneAlarm Pro (http://www.zonelabs.com) that
identifies in e-mail attachments potentially harmful files (ex: *.exe,
*.com, *.reg, *.vbs or others that can be added in this feature
configuration), and renames their extension to *.zl*; at the same time it
can show an alarm box to inform about this.
The problem with this feature is that it do not work with long file names,
like:
<<zonetestzonetestzonetestzonetestzonetestzonetestzonetestzonetestzonetestzo
netestzonetestzonetestzonetestzonetestzonetestzonetestzonetestzonetestzonete
stzonetestzonetestzonetestzonetestzonetestzonetestzonetestzonetestzonetestzo
netest.com>> (the same goes for other file types as .exe .reg or .vbs)
All versions of ZoneAlarm have this problem.
ZoneLabs is informed of this since 1 February 2001, and until now (version
2.6.84) the problem remains the same.
[ ]'s bacano
