laser-engravers Posted June 13, 2013 Share Posted June 13, 2013 Hello, this morning i tried to update ipBoard - after uploading the "board3_4_5.zip" i got a message from my provider, the file -> ips.editor.js are infected | HTML.Exploit.CVE_2013_312. ClamVax result: Link to comment Share on other sites More sharing options...
bfarber Posted June 13, 2013 Share Posted June 13, 2013 The exploit or vulnerability referenced is in Internet Explorer itself, not in the javascript code. I assume the A/V scanner is flagging this file because it believes the javascript code would trigger the vulnerability in IE. Edit: While I had originally suggested not to upload this file, IP.Chat does still use it. Link to comment Share on other sites More sharing options...
laser-engravers Posted June 13, 2013 Author Share Posted June 13, 2013 thanks for your fast response ;) but now i have a problem - i can´t upload this file! My provider locked my account, it´s not allowed to upload files containing malware/virus :sad: Link to comment Share on other sites More sharing options...
bfarber Posted June 13, 2013 Share Posted June 13, 2013 The thing is, this file does not contain malware. It is a false positive report by the virus scanner tool being used. It appears at this time that only ClamAV-based anti-virus engines are reporting this as a malicious file. We have run tests with Norton, AVG and avast and none of these tools flag the file. I have reported this as a false positive to ClamAV. I am hopeful that they will respond quickly. In the mean time, I would suggest asking your host to unlock your account and then simply removing the file if you do not use IP.Chat. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.