[34546] in bugtraq
Re: ZA Security Hole
daemon@ATHENA.MIT.EDU (Hugo van der Kooij)
Fri Apr 16 15:39:19 2004
Date: Fri, 16 Apr 2004 07:55:17 +0200 (CEST)
From: Hugo van der Kooij <hvdkooij@vanderkooij.org>
To: bugtraq@securityfocus.com
In-Reply-To: <000d01c42261$552cfbc0$0100a8c0@BlueBox>
Message-ID: <Pine.LNX.4.58.0404160752040.7889@gandalf.hugo.vanderkooij.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=ISO-8859-15
Content-Transfer-Encoding: 8bit
On Wed, 14 Apr 2004, Damjan Kreft wrote:
> I think, I discover some kind of security hole in ZoneAlaram - any version.
> The problem is hidding in E-mail Protection. Because I'm form Slovenia (not
> Slovakia), our alphabet does have some letters with roof (c - ?, s - ¨, z -
> ¸). And when the name of e-mail attachment contain any of these three
> letters, it don't go to the qurarantine (if the attachment do have right
> extension of course). I think that can be security threat. From this reason
> I write to you. If this is mistake, I'm sorry to steal your time with this
> e-mail. And sorry for my bad english :)
>
> I write to ZA Labs too, but no answer.
Are these attachments passed through regardless of filter conditions? Or
are they blocked/stripped now?
Hugo.
--
All email sent to me is bound to the rules described on my homepage.
hvdkooij@vanderkooij.org http://hvdkooij.xs4all.nl/
Don't meddle in the affairs of sysadmins,
for they are subtle and quick to anger.
