1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

PDF Security Bug...

Discussion in 'BlackHat Lounge' started by AnImALmoTheR, Feb 22, 2009.

  1. AnImALmoTheR

    AnImALmoTheR Junior Member

    Joined:
    Feb 27, 2008
    Messages:
    171
    Likes Received:
    100
    Location:
    StockTown
    Hi folks!

    Click on the wrong PDF documents and you risk to get your CPR hijacked! There is a vulnerability in Adobe programs that allows someone else to take over your computer...

    This isn't something totally new, but on a forum like BHW where your download and read ALOT of pdf files you should be extra careful.

    The document could contain a dangerous Trojan that comes into your computer, steal credit card numbers, passwords and other information. Trojan also opens the road outwards so that someone else on the Internet can get into your computer and change settings without you noticing.

    except to have a good virus program i recommend EVERYONE to protect themselves by disable java script in Adobe Reader.

    what you do is that you open your adobe acrobat reader and klick on edit, then choose preference, and klick on java script in the left sidebar. then unklikck "enable java script" .

    This is no 100% protecttion but for temporary you are protected pretty good.

    Good luck!

    cheers
    R!
     
  2. foxler

    foxler Regular Member

    Joined:
    Mar 7, 2008
    Messages:
    279
    Likes Received:
    159
    Thats why I suggest downloading and using 'Foxit Reader' for pdfs instead of any adobe product. I would say it is faster and more secure, because the exploiters mainly target the application that has the most users... being adobe for pdf's. I've been using it for a while instead of adobe and am happy about it. Now, I don't know the details of the exploit so idk if it would protect against this particular one, but I'm pretty sure it would because it says "Adobe programs"

    Edit: Would you rather an app running on your pc that is 33.5 MB (Adobe Reader 9) or an app that is 3.69 MB (Foxit)? Think we got a winner here, I hope none of you are using Adobe reader.
     
    • Thanks Thanks x 1
    Last edited: Feb 22, 2009
  3. AnImALmoTheR

    AnImALmoTheR Junior Member

    Joined:
    Feb 27, 2008
    Messages:
    171
    Likes Received:
    100
    Location:
    StockTown
    hmmm nice, i will check it out. heres the link:
    hxxp://www.foxitsoftware.com/pdf/rd_intro.php

    it's a free download :D
     
  4. justone

    justone Elite Member

    Joined:
    Oct 12, 2008
    Messages:
    1,516
    Likes Received:
    1,037
    Occupation:
    -
    Location:
    Europe
    There is also a very recent vulnerability in IE that is currently mainly exploited through active-x embedded objects in DOC files.
    Don't have a reference link now but I read about it recently, probably still unpatched.
     
  5. The Scarlet Pimp

    The Scarlet Pimp Jr. VIP Jr. VIP Premium Member

    Joined:
    Apr 2, 2008
    Messages:
    787
    Likes Received:
    3,120
    Occupation:
    Chair moistener.
    Location:
    Cyberspace
    i use kpdf or ghostview. adobe is a bloated p.o.s. program. :(
     
  6. antsaoo

    antsaoo Supreme Member

    Joined:
    Oct 1, 2008
    Messages:
    1,291
    Likes Received:
    637
    Sounds fun :) need take closer look into this at later today, I read about Ie exploit and i think its for ie7 glad i use mozilla :) ( Or maybe thats what they want me to believe :p, who knows )
     
  7. justone

    justone Elite Member

    Joined:
    Oct 12, 2008
    Messages:
    1,516
    Likes Received:
    1,037
    Occupation:
    -
    Location:
    Europe
    you might use mozilla, but if you have m$ word it will still be vulnerable ;)
    also autolook uses IE by default
    not to forget any other stupid tool from m$
     
  8. AnImALmoTheR

    AnImALmoTheR Junior Member

    Joined:
    Feb 27, 2008
    Messages:
    171
    Likes Received:
    100
    Location:
    StockTown
    is anything safe on the Internet? :p
     
  9. justone

    justone Elite Member

    Joined:
    Oct 12, 2008
    Messages:
    1,516
    Likes Received:
    1,037
    Occupation:
    -
    Location:
    Europe
    You can choose between unsafe and very unsafe :)