|
 |
|
Shop
You are here: News > News > Vulnerability in PDF security creates tension
| » IT Security NEWS |
| » 06 April 2010 |
| Vulnerability in PDF security creates tension |
A latest study emphasized that PDF files do offer security threats greater than before. It was found out that these files may be manipulated and that it may also be utilized to affect other files found within a system.
According to Jeremy Conway, the application security researcher at NitroSecurity, PDF files are considered “wormable” based on the attack scenario that he found out. This was derived from the previously-known action of computer viruses, in which it can overwrite other unaffected files in order to extend a virus further into a system.
The security researcher’s study was definitely valuable because it was able to show how the uninfected PDF files are affected when utilizing features being aided by the PDF specification. In this research, the following were not considered: software vulnerability, use of external binaries, and Java Script.
The research conducted by Conway came after the release of Didier Stevens’ study. This security researcher was able to display the method on how malicious codes can be injected into PDF files. It was also shown in this study the way pop-up dialog boxes are being used in order to scam online users.
Companies like Adobe and FoxIT are already designing a remedy patch in order to resolve these issues. They are alarmed about the security vulnerabilities that were found on their PDF viewing packages as shown in those two researches.
It was Stevens’ research who sparked Conway’s interest on finding security threats in the PDF specification. Conway was able to issue an advisory and a video that reveals the secret regarding wormable PDF files.
Stevens was able to suggest a remedy in which security vulnerabilities can be hindered and it can also avoid PDF files from being “wormed”. And, according to Conway, the manufacturers must determine a technique that can put a stop on the example given by Didier because this may also be used on the same concept.
Mikko Hypponen, the chief research officer at F-Secure, created an enlightening blog post for users. This post was made in order to educate others about PDF specification and how it is able to accommodate various unexpected contents such as media files, injected codes, and JavaScript. Included also are the forms, which upload data that a user keys in into an external web server. These are actually the reason why it takes time for a PDF application like Adobe Reader to load.
Surf through the following SecPoint links for more information: SecPoint Awards, SecPoint Press, and SecPoint Products. |
 |
 |
Awards & Reviews | |||||
|
||||||
|
|
Subscribe to our Mailing List |
|
|
|
|
Customer References | |
|
||
