Author Topic: Analysing the PDF Exploit  (Read 4769 times)

0 Members and 1 Guest are viewing this topic.

August 30, 2009, 04:34:28 pm
Read 4769 times


  • Administrator
  • Hero Member

  • Offline
  • *****

  • 3335

I want to present my results from my analysis of the Adobe PDF Exploit from March 2009. It allows to execute any Win32 code due to a bug in the jbig2 compression. The bug has currently (date 3rd March 2009) been fixed only internally, but Adobe wants to provide an update on March 11th. There are all Adobe Reader versions since 2007 vulnerable (Adobe Reader 7.0 and higher are affected). The percentage of exploiting PDFs that use this bug is very low, it is not wide spread.
Ruining the bad guy's day