{"id":72904,"date":"2010-04-15T07:33:56","date_gmt":"2010-04-15T07:33:56","guid":{"rendered":"https:\/\/localhost\/wordpress\/?p=72904"},"modified":"2010-04-15T07:33:56","modified_gmt":"2010-04-15T07:33:56","slug":"disguised-pdf-attack-possible","status":"publish","type":"post","link":"https:\/\/www.quickheal.com\/blogs\/disguised-pdf-attack-possible\/","title":{"rendered":"Disguised PDF attack possible"},"content":{"rendered":"<p>A design flaw in Adobe&#8217;s popular PDF format which was published by Didier Stevens in first week of April can be used by hackers to install malwares on users&#8217;s computers.<\/p>\n<p>Its a policy flaw and not a security vulnerablity in Adobe Reader that could cause this. Researcher demonstrated this attack using the PDF specification&#8217;s &#8220;\/Launch&#8221; function which could exploit this policy flaw on a fully-patched Adobe Reader.<\/p>\n<p>Today (Thursday) Adobe is expected to announce the patches it plans to deliver next week as a part of its quarterly security updates. Adobe has urged users to be careful while opening PDFs and has given a work around towards the &#8220;\/Launch&#8221; design flaw and recommended to uncheck the setting of &#8220;Allow opening of non-PDF file attachments with external applications&#8221; in the programs&#8217; preferences pane. This way user can avoid the possible attack.<\/p>\n<p>Company provided more details on this on the their blog &#8211; <a href=\"https:\/\/blogs.adobe.com\/adobereader\/2010\/04\/didier_stevens_launch_function.html\">&#8220;PDF &#8220;\/Launch&#8221; Social Engineering Attack&#8221;.<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>A design flaw in Adobe&#8217;s popular PDF format which was published by Didier Stevens in first week of April can be used by hackers to install malwares on users&#8217;s computers. Its a policy flaw and not a security vulnerablity in Adobe Reader that could cause this. Researcher demonstrated this attack using the PDF specification&#8217;s &#8220;\/Launch&#8221; [&hellip;]<\/p>\n","protected":false},"author":24,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-72904","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.quickheal.com\/blogs\/wp-json\/wp\/v2\/posts\/72904"}],"collection":[{"href":"https:\/\/www.quickheal.com\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.quickheal.com\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.quickheal.com\/blogs\/wp-json\/wp\/v2\/users\/24"}],"replies":[{"embeddable":true,"href":"https:\/\/www.quickheal.com\/blogs\/wp-json\/wp\/v2\/comments?post=72904"}],"version-history":[{"count":0,"href":"https:\/\/www.quickheal.com\/blogs\/wp-json\/wp\/v2\/posts\/72904\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.quickheal.com\/blogs\/wp-json\/wp\/v2\/media?parent=72904"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.quickheal.com\/blogs\/wp-json\/wp\/v2\/categories?post=72904"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.quickheal.com\/blogs\/wp-json\/wp\/v2\/tags?post=72904"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}