Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Full Disclosure: Re: PDF's unsafe?

Re: PDF's unsafe?

From: Alex <alexindef_at_rogers.com>
Date: Wed, 21 Sep 2005 14:32:12 -0400

Embedded executable attachments - could be any type.

Adobe (Reader from version 6 & full version from version 5) allows to open

and execute them manually.

Adobe built-in JavaScript and auto events do not allow execute the
attachments

(at least from my tries, somebody could be more successful)

Alex

----- Original Message -----
From: "Geo." <geoincidents_at_nls.net>
To: <full-disclosure_at_lists.grok.org.uk>
Sent: Wednesday, September 21, 2005 12:29 PM
Subject: RE: [Full-disclosure] PDF's unsafe?

> >> and I know it doesn't run javascript or allow
> executable attachments in PDF's, like Adobe's does.<<
>
> Executable attachments? How?
>
> Geo.
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Received on Sep 21 2005

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]