lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Date: Mon Apr 25 21:41:43 2005
From: michealespinola at gmail.com (Micheal Espinola Jr)
Subject: email attack vector just got wider

It seems most people I know haven't noticed that the new version of Adobe 
Acrobat (7) now allows for embedded/attached documents.
 Since PDF's have generally been considered a safe document format and are 
typically not blocked by content/attachment scanners, this now opens an 
email-based attack vector that anti-virus providers [to the best of my 
knowledge] are not currently addressing.
 Many thanks to Adobe for creating another issue for us to deal with, and 
especially for not having the forethought to coordinate with anti-virus 
vendors to prepare for assuredly future exploitation of the technology.

-- 
ME2

my home: <http://www.santeriasys.net/>
my photos: <http://mespinola.blogspot.com/>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20050425/1abf2961/attachment.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ