[clamav-users] Win.Exploit.CVE_2016_3301-6210129-0 detected. Could this be a false positive?

Al Varnell alvarnell at mac.com
Sun Apr 9 06:19:07 EDT 2017


On Apr 8, 2017, at 5:38 AM, ANANT S ATHAVALE <asa at isac.gov.in> wrote:
> ----- Message from Ralf Hildebrandt <Ralf.Hildebrandt at charite.de> ---------
>    Date: Sat, 8 Apr 2017 13:37:48 +0200
>    From: Ralf Hildebrandt <Ralf.Hildebrandt at charite.de>
> Reply-To: ClamAV users ML <clamav-users at lists.clamav.net>
> Subject: Re: [clamav-users] Win.Exploit.CVE_2016_3301-6210129-0 detected. Could this be a false positive?
>      To: clamav-users at lists.clamav.net
> 
>> * ANANT S ATHAVALE <asa at isac.gov.in>:
>>> Hi List,
>>> 
>>> One of the .pptx file which was attached is getting detected as VIRUS:
>>> Win.Exploit.CVE_2016_3301-6210129-0.  As it is a official document and can't
>>> to uploaded for submission.  How to manually verify?
>> 
>> What do you want to verify?
>> 
>> --
>> Ralf Hildebrandt                   Charite Universitätsmedizin Berlin
> ----- End message from Ralf Hildebrandt <Ralf.Hildebrandt at charite.de> -----
> 
> Hello,
> 
> It is not getting detected by McAfee which is already installed in Windows Platform in our setup.  Now, I can not share the document due to technical contents.  Now, how to prove that, yes, it is really contains a vulnerability.

Win.Exploit.CVE_2016_3301-6210129-0 was dropped in daily - 23280.

-Al-
-- 
Al Varnell
Mountain View, CA






More information about the clamav-users mailing list