ClamAV False Positive OutlkLR.cab

Today my QNAP NAS daily ClamAV scan job reported that it had found a virus in a file called OutlkLR.cab which is part of the Office 2010 install DVD ISO (which I’ve  extracted on my NAS). The full path to the file is as follows:

SW_DVD5_Office_Professional_Plus_2010w_SP1_64Bit_English_CORE_MLF_X17-76756/Outlook.en-us/OutlkLR.cab

ClamAV thinks that the file is infected with BC.Exploit.CVE_2013_3940 (A Windows GDI remote code execution vulnerability)

I have reported the false positive to ClamAV.

This was with virus definitions dated 2015/04/08 18:35.

UPDATE 2015-04-10: This is resolved as of virus definitions dated 2015/04/09 18:51

This entry was posted in Security and tagged , , , , , , , , , . Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s