BC.Exploit.CVE_2011_3412 clamwin (false positive???)

Posted at 2:33:23 PM in Recovery (46) | Read count: 2274

Got several virus alerts from Clamwin in several old .xls files. Looking up the info, it appears that this was a false positive last year. See this post: http://forums.clamwin.com/viewtopic.php?t=3396. Did a little research and this particular file seems to be imbedded in publisher files and emailed to victims per NIST: (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3412). Not sure if the code executes in an excel file or not, but Clamwin is finding code that it believes to be this virus.

Written by Leonard Rogers on Saturday, February 4, 2012 | Comments (0)


    Name
    URL
    Email
    Email address is not published
    Remember Me
    Comments

    CAPTCHA Reload
    Write the characters in the image above