[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Full-disclosure] Re: email attack vector just got wider
- To: Full Disclosure <full-disclosure@xxxxxxxxxxxxxxxxx>
- Subject: [Full-disclosure] Re: email attack vector just got wider
- From: Micheal Espinola Jr <michealespinola@xxxxxxxxx>
- Date: Mon, 25 Apr 2005 17:13:25 -0400
Perhaps not "just". My apologies for those that are aware of this, but it
seems Adobe 6 also had this capability - although many people have been
unaware of this. I recently upgrade from 5 to 7, so I missed this potential
issue from the get-go.
Someone pointed out to me that Symantec does have a bulletin stating that
by setting your AV to "scan all files" you can detect a virus inside a file
embedded into a PDF.
Unfortunately, this does not address the blocking of certain attachments
outright.
On 4/25/05, Micheal Espinola Jr <michealespinola@xxxxxxxxx> wrote:
>
> It seems most people I know haven't noticed that the new version of Adobe
> Acrobat (7) now allows for embedded/attached documents.
> Since PDF's have generally been considered a safe document format and are
> typically not blocked by content/attachment scanners, this now opens an
> email-based attack vector that anti-virus providers [to the best of my
> knowledge] are not currently addressing.
> Many thanks to Adobe for creating another issue for us to deal with, and
> especially for not having the forethought to coordinate with anti-virus
> vendors to prepare for assuredly future exploitation of the technology.
>
> --
> ME2
>
> my home: <http://www.santeriasys.net/>
> my photos: <http://mespinola.blogspot.com/>
>
--
ME2
my home: <http://www.santeriasys.net/>
my photos: <http://mespinola.blogspot.com/>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/