EXP/HTML.VML.Gen - FALSE POSITIVE !!!

A component of the portal website makes some “virus” trouble. At the moment I have no clue why this is recognised by the AVs but I do not want to switch off the video section. Heh… Damn Vulnerable Website

This website is NOT INFECTED !!!. The initialization of the VML support …”document.namespaces.add(”v”, “urn:schemas-microsoft-com:vml”); ” … seems to release the virus warning at some virus scanners in a randomized way! We use this for the Podcast component. The root cause are is the heuristics which the scanners use!

Comments

• Tags

  DVL 1.5 Wargame

• Recent Posts

  • DVL 1.5 has now left planning status. Bug Fixing started!
  • DVL 1.5 has left planning status!
  • Damn Vulnerable Linux Strychnine+605 1.4 final
  • DVL Strychnine+E605 1.4 release in January 2008!
  • Damn Vulnerable Linux Strychnine+E605 - version 1.4 under construction

• Recent Comments

  • Schneider on DVL 1.5 has now left planning status. Bug Fixing started!
  • mike on DVL 1.5 has now left planning status. Bug Fixing started!
  • zahra on Assembly Language - How to start?
  • luke on New additions to Damn Vulnerable Linux 1.4
  • Leo on Damn Vulnerable Linux Strychnine+605 1.4 final

• Categories

  • DVL E605
  • DVL Project
  • DVL Strychnine
  • Reverse Code Engineering