JPEG Virus

Matt Kehler mkehler at WRHA.MB.CA
Tue Sep 28 16:24:21 IST 2004

>>> mailscanner at LISTS.COM.AR 09/28/04 09:59AM >>>
>Copy&paste from clamav site:
> ClamAV JPEG Exploit (MS04-028) Detection
>    nervoso - 2004-09-28 06:30   -   Clam AntiVirus
>ClamAV 0.80rc3 successfuly detects JPEG files with modified comment section that allows attackers to remotely execute arbitrary code on >>>

I assume this means it will work 'out of the box', and the comment section it talks about is *already* modified?  Its not too clear on that, and the website doesn't say.  And I also assume that using clamavmodule from Mailscanner will work just the same as clamav?


This email and/or any documents in this transmission is intended for the
addressee(s) only and may contain legally privileged or confidential
information.  Any unauthorized use, disclosure, distribution, copying or
dissemination is strictly prohibited.  If you receive this transmission in
error, please notify the sender immediately and return the original.

Ce courriel et tout document dans cette transmission est destiné à la personne
ou aux personnes à qui il est adressé. Il peut contenir des informations
privilégiées ou confidentielles. Toute utilisation, divulgation, distribution,
copie, ou diffusion non autorisée est strictement défendue. Si vous n'êtes pas
le destinataire de ce message, veuillez en informer l'expéditeur immédiatement
et lui remettre l'original.

------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at with the words:
'leave mailscanner' in the body of the email.
Before posting, read the MAQ ( and
the archives (

More information about the MailScanner mailing list