lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <BAY10-DAV15FB4ABD3CF6D1FADB80DED9E70@phx.gbl>
Date: Mon Jul  4 06:37:15 2005
From: se_cur_ity at hotmail.com (Morning Wood)
Subject: odd Adobe Acrobat thing...

i noticed...

simply rolling over a *.pdf on your desktop launches...
C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32Info.exe

im guessing Explorer is doing some odd things ( preloading on a rollover )
..reminds me of the jpg GDI exploit. i imagine if AcroRd32Info.exe is
exploitable you could craft a bad .pdf with data to overflow that exe. ( a
simple rollover would start the sploit )

just noticing,
MW

Powered by blists - more mailing lists