Open Source News » Slashdot: IT » New Method Could Hide Malware In PDFs, No Further Exploits Needed

Feeds

34723 items (30210 unread) in 5 feeds

OpenSource (5765 unread)

• SourceForge.net: Front page news (802 unread)
• Slashdot: IT (4963 unread)

Security (11364 unread)

• Digg / Security (11364 unread)

Linux (13081 unread)

• digg / Linux/Unix (11421 unread)
• Slashdot: Linux (1660 unread)

Slashdot: IT

• 

  New Method Could Hide Malware In PDFs, No Further Exploits Needed

  Posted: March 31st, 2010, 8:47pm CEST by timothy

  Tags:  security  

  Trailrunner7 writes "A security researcher has managed to create a proof-of-concept PDF file that executes an embedded executable without exploiting any other security vulnerabilities. The PDF hack, when combined with clever social engineering techniques, could potentially allow code execution attacks if a user simply opens a rigged PDF file. With Adobe Reader, the only thing preventing execution is a warning. Disabling JavaScript will not prevent this."

  Read more of this story at Slashdot.