3057 matches found
iOS Impact PDF Reader 2.0 - POST Method Remote Denial of Service
iOS Impact PDF Reader 2.0 - POST Method Remote Denial of Service Exploit: Impact PDF Reader v2.0 for iPhone/iPod Touch POST Method Remote DoS Date: 14/06/2010 Author: Nishant Das Patnaik Website: http://nishantdaspatnaik.yolasite.com Software Link:...
iOS Impact PDF Reader 2.0 - POST Method Remote Denial of Service
Exploit: Impact PDF Reader v2.0 for iPhone/iPod Touch POST Method Remote DoS Date: 14/06/2010 Author: Nishant Das Patnaik Website: http://nishantdaspatnaik.yolasite.com Software Link: http://itunes.apple.com/us/app/impact-pdf-reader/id322140783?mt=8 Version: 2.0, 1.2 Tested on: iPod 2G with iOS...
Foxit Launches 'Safe Mode' to Counter PDF Attacks
Foxit Corp has added new security features to its alternative PDF reader software to help thwart recent malware attacks that exploit the “/launch” feature. With Foxit PDF Reader Version 3.3, the company has added a Safe Mode that blocks external commands from being executed by the software. The...
Adobe Plugs Critical PDF Code Execution Flaw
Adobe today released an out-of-band security update to patch a pair of gaping holes that expose hundreds of millions of computer users to remote code execution attacks. The vulnerabilities are rated “critical” and affect Adobe Reader and Adobe Acrobat on all platforms — Windows, Mac and Linux. Th...
Adobe PDF Reader Gets Another Security Makeover
Adobe has released a mega-update for its Reader and Acrobat software products to fix a total of eight documented security vulnerabilities. The update comes with significant security improvements, including the on-by-default addition “Enhanced Security,” a feature that provides a set of default...
Adobe to Patch Zero-Day Flaw on Jan 12
Here’s a quick update to the Adobe PDF Reader/Acrobat zero-day story that broke yesterday after the company confirmed that an unpatched vulnerabilities was being attacked in the wild. First up, an exploit has been fitted into the Metasploit point-and-click penetration testing tool and there are...
Online Ad Site Hacked, Rigged to Serve Exploits
A high-profile online advertising Web site has been hacked and rigged to serve multiple exploits to Microsoft Windows users surfing the net with unpatched third party desktop software. According to a warning issued by Websense Security Labs, the malicious code was found on media-servers.net, whic...
Adobe Reader: Multiple vulnerabilities
No description provided by source. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200910-03 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - ...
Adobe Reader: Multiple vulnerabilities
Background Adobe Reader formerly Adobe Acrobat Reader is a closed-source PDF reader. Description Multiple vulnerabilities were discovered in Adobe Reader. For further information please consult the CVE entries and the Adobe Security Bulletin referenced below. Impact A remote attacker might entice...
Adobe Warns: Unpatched PDF Vulnerability Under Attack
Adobe has confirmed a critical, unpatched vulnerability in its PDF Reader/Acrobat software is being exploited by malicious attackers. The vulnerability affects Adobe Reader and Acrobat 9.1.3 and earlier versions on Windows, Macintosh and UNIX. Adobe described the in-the wild attacks as limited an...
Adobe products: Multiple vulnerabilities
Background Adobe Flash Player is a closed-source playback software for Flash SWF files. Adobe Reader is a closed-source PDF reader that plays Flash content as well. Description Multiple vulnerabilities have been reported in Adobe Flash Player: lakehu of Tencent Security Center reported an...
Adobe Doles Out Bug-Filled PDF Reader to Users
From Computerworld Gregg Keizer Adobe delivers an out-of-date version of Reader to users who download the popular application from its Web site, a security company warned today. The edition Adobe currently offers includes at least 14 security vulnerabilities that have been patched by the company ...
Adobe Reader: User-assisted execution of arbitrary code
Background Adobe Reader is a PDF reader released by Adobe. Description Multiple vulnerabilities have been reported in Adobe Reader: Alin Rad Pop of Secunia Research reported a heap-based buffer overflow in the JBIG2 filter CVE-2009-0198. Mark Dowd of the IBM Internet Security Systems X-Force and...
Adobe ships fix PDF Reader zero-day
Adobe has released a security bulletin to patch a “critical” code execution flaw affecting the ubiquitous PDF Reader and Acrobat software. However, the patch is only available for Adobe Reader 9 and Acrobat 9. Earlier versions of the software are affected by the vulnerability — and in the wild...
Immunity Canvas: FOXIT_ACTION
Name| foxitAction ---|--- CVE| CVE-2009-0837 Exploit Pack| CANVAS Description| Foxit PDF Reader Action Overflow Notes| CVE Name: CVE-2009-0837 VENDOR: Foxit Software VersionsAffected: Foxit Reader 3.0 build 1506 Repeatability: References: http://www.foxitsoftware.com/pdf/reader/security.htm CVE...
Adobe Reader: User-assisted execution of arbitrary code
Background Adobe Reader formerly Adobe Acrobat Reader is a closed-source PDF reader. Description The Johns Hopkins University Applied Physics Laboratory reported that input to an unspecified JavaScript method is not properly validated. Impact A remote attacker could entice a user to open a...
Adobe Acrobat Reader JavaScript方式远程代码执行漏洞
BUGTRAQ ID: 29908 CVECAN ID: CVE-2008-2641 Acrobat Reader是一款流行的PDF文件阅读器。 Acrobat Reader的JavaScript方式存在输入验证错误,如果用户受骗打开了内嵌有恶意JavaScript内容的PDF文件的话就会导致执行任意指令。 Adobe Acrobat Professional = 7.0.9 Adobe Acrobat Professional 8.0 - 8.1.2 Adobe Reader = 7.0.9 Adobe Reader 8.0 - 8.1.2 Adobe -----...