Malicious PDF files
Loading...
Loading...
1:45
Screen Capture: Targeted Attack PDF Exploit Taking Over A Computerby fslabs9,536 views- 1:42
Malicious PDF Analysis Workshop - Part 1 - Setupby dist671,909 views
- 3:57
Secure by designby helpnetsecurity845 views
- 4:48
PDF exploitby MalwareDiaries2,964 views
- 2:50
Lavasoft and the antispyware industryby helpnetsecurity5,247 views
- 7:34
Client Side Exploit for Adobe 9.3 Vulnerabilityby SocialEngineerOrg4,294 views
- 2:39
HOW TO DOWNLOAD ANY EBOOK FOR FREE TO MOBILE DEVICES [AMAZON KINDLE]by unigroupx69,420 views
- 1:29
How To Convert Microsoft Excel [XLS] To PDF Fileby Classicpdf520 views
- 0:31
Pdf Securityby diamondsportsbook277 views
- 3:59
How to Convert PDF to Word, PDF to Excel, and PDF to HTMLby Docudesk186,907 views
- 2:33
CVE-2010-1240 : Adobe PDF Embedded EXE Social Engineeringby wowzataz1,968 views
- 1:53
Exploit Firefox 3.6 18/04/2010by MadCr4z12,195 views
- 4:45
Cain & Abel - Part 1: Crackerby go4the101259,460 views
- 1:52
Pokemon Anti-Virusby suicidejournalist361,918 views
- 9:01
The Story of DEFCONby helpnetsecurity30,757 views
- 10:08
E-BOOK / REVISTA / LIBRO VIRTUAL 3D: Efecto Pasar Hojas desde pdf (PC) - [1/2] por disenadorec.comby disenadorec51,419 views
- 8:04
DTrace: The Reverse Engineer's Unexpected Swiss Army Knifeby helpnetsecurity11,513 views
- 4:38
SnappleMan - Malicious Fingers (Final Boss)by JSTM2000254,402 views
- 3:57
MALICIOUS - ANYTHINGby mrmalish5,264 views
- 14:10
THE VILLAGEby 4mationsTV13,880 views
Yes, I've done tests with this using Adobe and Foxit. You can find it on my blog (sorry, can't post links in comment here).
Adobe Reader will ask permission for every action (like launching a program for an embedded file, launching your browser, turning on full screen, ...)
Previous versions of Foxit didn't ask for permission when the browser was launched to vist a website (/AA + /URI), but they fixed this when I reported it.
dist67 2 years ago
Have you done any work, or seen any exploits which use the OpenAction[1] which can then launch applications[2], do URI actions, or embedded goto actions? It seems that these would be potential attack vectors for sites which do nasty things such as browser exploits, or at a minimum could be used for tracking and information gathering. None of this would require javascript, but I'm not sure if there are other protections in place.
[1] p74 of PDF 1.7 spec
[2] p418 of PDF 1.7 spec
ilredil 2 years ago
great video man thanks!
multitouchy 2 years ago