Multiple Vendor File Scanner Malicious Archive DoS Vulnerability

Multiple Vendor File Scanner Malicious Archive DoS Vulnerability

Solution:
Baltimore Technologies has acknowledged this issue, and has reported that MAILsweeper installed on a machine with a single partition is subject to this issue. MAILsweeper configured to use multiple partitions moves the message to a quarantine area once the free space is exhausted. During this process messages will continue to be received and delivered. Baltimore Technologies has released a document (Potential Threat from the â??Zip of Deathâ?) demonstrating the required steps to take in order to mitigate this issue. Please see the reference section to obtain the document

Currently the SecurityFocus staff are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com <mailto:vuldb@securityfocus.com>.