[prev in list] [next in list] [prev in thread] [next in thread]
List: clamav-users
Subject: Re: [clamav-users] signature for cve2017-11882
From: "G.W. Haywood via clamav-users" <clamav-users () lists ! clamav ! net>
Date: 2021-04-03 16:55:16
Message-ID: alpine.DEB.2.21.2104031740230.18427 () piplus ! local ! jubileegroup ! co ! uk
[Download RAW message or body]
Hi there,
On Sat, 3 Apr 2021, Jigar via clamav-users wrote:
> Any update w.r.t. submitted infected file and signature?.
This vulnerability was patched by Microsoft more than three years ago.
For example, see
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2017-11882
There should be no vulnerable versions of the software running now.
As this is such an old threat, and mitigated a long time ago, you seem
to me to be more concerned about it than I would expect anyone to be.
Is there any particular reason for that?
If you supplied your email address to the ClamAV signature team when
you reported the malware samples you will get an email in due course
if a new signature is developed. OTOH I should not expect them to be
putting this one at the front of their schedule.
If you are using vulnerable software, patch it.
--
73,
Ged.
_______________________________________________
clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/contact.html#ml
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic