Panda ActiveScan false positive with Nessus .nasl files

From: LEAD Soluciones Informaticas (soporte@leadsi.com.ar)
Date: Sat Aug 12 2006 - 16:27:13 EDT

• Next message: Louis: "Víagra good príce"
• Previous message: Dr HenDre: "Re: arp injection for wifi pentesting"
• Next in thread: Pedro Bustamante: "RE: Panda ActiveScan false positive with Nessus .nasl files"
• Maybe reply: Pedro Bustamante: "RE: Panda ActiveScan false positive with Nessus .nasl files"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Recently  I checked mi winXP system with Panda online ActiveScan, and I
think it has found some false positive when checking some nessus’s .nasl
 files:

Virus:Linux/Test10879                                                       
    Disinfected                  
C:\Documents and Settings\FALSEUSER\Mis documentos\ FALSEPATH
\nessus-installer.sh[nessus.tar.gz][nessus.tar][nessus-plugins/scripts/port_
shell_execution.nasl]   

Hacktool:DoS/42zip                                       
Not disinfected              
C:\Documents and Settings\ FALSEUSER \Mis
documentos\FALSEPATH\nessus-installer.sh[nessus.tar.gz][nessus.tar][nessus-p
lugins/scripts/smtp_AV_42zip_DoS.nasl][42.zip]

I am curious about the first file’s “DISINFECTED” status. That’s a file I
used to install nessus on a debian box and I have  no intention on
reinstalling nessus to check if the file is corrupted or deleted, but just
want to ask for your opinion about this. Have you ever had your nessus
fuctioning or it’s  files integrity compromised by some anti-virus or
anti-spyware software?

Thank you.

Luis Alvarado Day
www.leadsi.com.ar
Rosario | Argentina

------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security?
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's
Choice Award from eWeek. As attacks through web applications continue to rise,
you need to proactively protect your applications from hackers. Cenzic has the
most comprehensive solutions to meet your application security penetration
testing and vulnerability management needs. You have an option to go with a
managed service (Cenzic ClickToSecure) or an enterprise software
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can
help you: http://www.cenzic.com/news_events/wpappsec.php
And, now for a limited time we can do a FREE audit for you to confirm your
results from other product. Contact us at request@cenzic.com for details.
------------------------------------------------------------------------------

• Next message: Louis: "Víagra good príce"
• Previous message: Dr HenDre: "Re: arp injection for wifi pentesting"
• Next in thread: Pedro Bustamante: "RE: Panda ActiveScan false positive with Nessus .nasl files"
• Maybe reply: Pedro Bustamante: "RE: Panda ActiveScan false positive with Nessus .nasl files"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:56:41 EDT