[clamav-users] False Positive - Win.Exploit.CVE_2016_3316-1?
Steve Basford
steveb_clamav at sanesecurity.com
Wed Aug 10 10:29:36 UTC 2016
On Wed, August 10, 2016 7:22 am, ANANT S ATHAVALE wrote:
> Hi,
>
>
> Most of the mails are marked with Win.Exploit.CVE_2016_3316-1. Is
> this a false positive?
Finally got it... blank LibreOffice.doc file...
blank.doc: Win.Exploit.CVE_2016_3316-1
I've added a whitelist entry to Sanesecurity's sigwhitelist.ign2 file and
pushed out an update for 3rd Party download script user, until it's fixed
officially.
Cheers,
Steve
Web : sanesecurity.com
Twitter: @sanesecurity
More information about the clamav-users
mailing list