Zerush@lemmy.ml to

Security@lemmy.ml · 25 days ago

GitHub - Bombadil-Systems/zombie-zip: Malformed ZIP archive that evades antivirus detection by declaring Method=0 (stored) while containing DEFLATE-compressed payload.

2

6

GitHub - Bombadil-Systems/zombie-zip: Malformed ZIP archive that evades antivirus detection by declaring Method=0 (stored) while containing DEFLATE-compressed payload.

Zerush@lemmy.ml to

Security@lemmy.ml · 25 days ago

2

Malformed ZIP archive that evades antivirus detection by declaring Method=0 (stored) while containing DEFLATE-compressed payload. - Bombadil-Systems/zombie-zip

Not solved problem since 20 years

See also https://kb.cert.org/vuls/id/976247

Chat

rijom@lemmy.ml
link
fedilink
arrow-up
1·
25 days ago
How is this different from just any simple encryption of a valid zip?
- Zerush@lemmy.mlOP
  link
  fedilink
  arrow-up
  1·
  25 days ago
  It isn’t, that is the problem for AVs to detect it