Lucene search
K

Portable Document Format - Specification Signature Collision

🗓️ 11 Aug 2010 00:00:00Reported by Florian ZumbiehlType 
exploitpack
 exploitpack
👁 15 Views

PDF Signature Collision Vulnerabilit

Code
source: https://www.securityfocus.com/bid/42377/info

The Portable Document Format (PDF) specification is prone to a signature-collision attack when signing PDF documents.

An attacker can exploit this issue to create PDF documents containing forged signatures. Successfully exploiting this issue will result in the application accepting the signature of a document as valid when it is not. This may result in a false sense of security; other attacks are also possible.

All products conforming to the specification for signing PDF documents are affected by this issue. 

https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/34437.tar.gz

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation