[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] email attack vector just got wider

To: Full Disclosure <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: [Full-disclosure] email attack vector just got wider
From: Micheal Espinola Jr <michealespinola@xxxxxxxxx>
Date: Mon, 25 Apr 2005 16:41:35 -0400

It seems most people I know haven't noticed that the new version of Adobe 
Acrobat (7) now allows for embedded/attached documents.
 Since PDF's have generally been considered a safe document format and are 
typically not blocked by content/attachment scanners, this now opens an 
email-based attack vector that anti-virus providers [to the best of my 
knowledge] are not currently addressing.
 Many thanks to Adobe for creating another issue for us to deal with, and 
especially for not having the forethought to coordinate with anti-virus 
vendors to prepare for assuredly future exploitation of the technology.

-- 
ME2

my home: <http://www.santeriasys.net/>
my photos: <http://mespinola.blogspot.com/>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- [Full-disclosure] Re: email attack vector just got wider
  - From: Micheal Espinola Jr
- Re: [Full-disclosure] email attack vector just got wider
  - From: Nigel Horne

Prev by Date: Re: [Full-disclosure] web server DoS
Next by Date: [Full-disclosure] Re: email attack vector just got wider
Previous by thread: Re: [Full-disclosure] web server DoS
Next by thread: [Full-disclosure] Re: email attack vector just got wider
Index(es):
- Date
- Thread