[clamav-users] Swf.Exploit.CVE_2015_5548 giving FP's
Hajo Locke
Hajo.Locke at gmx.de
Tue Nov 17 08:06:20 UTC 2015
Hello,
Am 17.11.2015 um 07:33 schrieb Al Varnell:
> Swf.Exploit.CVE_2015_5548 was added to the database today:
>> ClamAV database updated (16 Nov 2015 07-00 -0500): daily.cvd
>> Version: 21062
> and has resulted in three OS X users, so far, reporting various Adobe files as infected, in addition to even more reporting infected browser cache files.
>
> I have asked those with Adobe hits to upload to your False Positive Report site.
i also see a lot of alleged FP. Download newest version of jce and
included mediaplayer.swf is also marked as Swf.Exploit.CVE_2015_5548
https://www.joomlacontenteditor.net/
Is this FP or real Malware?
>
> -Al-
>
>
> _______________________________________________
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
>
> http://www.clamav.net/contact.html#ml
Thanks,
Hajo
More information about the clamav-users
mailing list