[clamav-users] What is the actual danger of this?

Micah Snyder (micasnyd) micasnyd at cisco.com
Thu Feb 23 01:29:18 UTC 2023 

This alert means that the JPEG is slightly malformed.  Many applications will probably be fine with it.  ClamAV thinks it is a little odd.  The risk is probably pretty low, but perhaps looking at a little to see if any other antivirus products think it is suspicious.

Regards,
Micah


Micah Snyder
ClamAV Development
Talos
Cisco Systems, Inc.
________________________________
From: clamav-users <clamav-users-bounces at lists.clamav.net> on behalf of newcomer01 via clamav-users <clamav-users at lists.clamav.net>
Sent: Wednesday, February 22, 2023 10:48 AM
To: clamav-users <clamav-users at lists.clamav.net>
Cc: newcomer01 <newcomer01 at posteo.de>
Subject: Re: [clamav-users] What is the actual danger of this?

for me look it like that the jpeg files cannot be read from heuristics scan as reason that something is wrong with it
i would not think frist, that is be an exploit


Von / From: Clamav User Mailinglist <mailto:clamav-users at lists.clamav.net>
An / To: Newcomer01 <mailto:newcomer01 at posteo.de>
CC / CC: Musc <mailto:muschelgev at newcultures.com>
Gesendet / Sent: Mittwoch, Februar 22, 2023 um 18:18 (at 06:18 PM) +0100
Betreff / Subject: [clamav-users] What is the actual danger of this?
> A clamdscan flagged quite a few files on my system as Heueristics.Broken.Media.JPEG.JFIFmarkerBadPosition. What kind of exploit is that? And what kind of danger does it pose? (What does it do?) Is it for all systems? Or just for Windows?
>
> A whole lot of web searching turned up nothing. Does anyone know?
>
> TIA.
> _______________________________________________
>
> Manage your clamav-users mailing list subscription / unsubscribe:
> https://lists.clamav.net/mailman/listinfo/clamav-users
>
>
> Help us build a comprehensive ClamAV guide:
> https://github.com/Cisco-Talos/clamav-documentation
>
> https://docs.clamav.net/#mailing-lists-and-chat

_______________________________________________

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.clamav.net/pipermail/clamav-users/attachments/20230223/8537b789/attachment.htm>

More information about the clamav-users mailing list