Adobe PDF "back door" publicised

Seen on a private security distribution list:,1895,2017085,00.asp

"A British security researcher has figured out a way to manipulate legitimate features in Adobe PDF files to open back doors for computer attacks.

David Kierznowski, a penetration testing expert specializing in Web application testing, has released proof-of-concept code and rigged PDF files to demonstrate how the Adobe Reader program could be used to launch attacks without any user action."

Published Tue, Sep 19 2006 7:46 by sandi