[clamav-users] False positive -- I hope

Steve Basford steveb_clamav at sanesecurity.com
Sun Jan 28 21:32:44 UTC 2018

Previous message (by thread): [clamav-users] False positive -- I hope
Next message (by thread): [clamav-users] CVE-2017-6419 patched in 0.99.3?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

>
> I *think* that this signature flags *all* zipped JS files, and (IIRC)
> both Firefox and Thunderbird have JS-containing JAR files. I hope that
> is all it is.
>
>
Yep that's it.

Foxhole_filename. Foxhole_all. Foxhole_generic and Foxhole_js all have 
different fp levels...depending on what your see your risks as.

Cheers,

Steve
Twitter: @sanesecurity

Previous message (by thread): [clamav-users] False positive -- I hope
Next message (by thread): [clamav-users] CVE-2017-6419 patched in 0.99.3?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the clamav-users mailing list