Network Security: Detailed info on [Full-disclosure] email attack vector just got wider

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security FullDisclosure

[Top] [All Lists]

[Full-disclosure] email attack vector just got wider

from [Micheal Espinola Jr] Network Security

[Permanent Link]

Subject:	[Full-disclosure] email attack vector just got wider
Date:	Mon, 25 Apr 2005 16:41:35 -0400

It seems most people I know haven't noticed that the new version of Adobe 
Acrobat (7) now allows for embedded/attached documents.
 Since PDF's have generally been considered a safe document format and are 
typically not blocked by content/attachment scanners, this now opens an 
email-based attack vector that anti-virus providers [to the best of my 
knowledge] are not currently addressing.
 Many thanks to Adobe for creating another issue for us to deal with, and 
especially for not having the forethought to coordinate with anti-virus 
vendors to prepare for assuredly future exploitation of the technology.

-- 
ME2

my home: <http://www.santeriasys.net/>
my photos: <http://mespinola.blogspot.com/>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Full-disclosure] email attack vector just got wider, Micheal Espinola Jr <= [Full-disclosure] Re: email attack vector just got wider, Micheal Espinola Jr [Full-disclosure] Re: email attack vector just got wider, Micheal Espinola Jr RE: [Full-disclosure] Re: email attack vector just got wider, Randall M Re[2]: [Full-disclosure] Re: email attack vector just got wider, phased Message not available Re: [Full-disclosure] Re: email attack vector just got wider, Micheal Espinola Jr Re: [Full-disclosure] email attack vector just got wider, Nigel Horne Re: [Full-disclosure] email attack vector just got wider, Micheal Espinola Jr Re: [Full-disclosure] email attack vector just got wider, psz

Previous by Date:	Re: [Full-disclosure] web server DoS, Valdis . Kletnieks
Next by Date:	[Full-disclosure] Re: email attack vector just got wider, Micheal Espinola Jr
Previous by Thread:	[Full-disclosure] web server DoS, George Orwell
Next by Thread:	[Full-disclosure] Re: email attack vector just got wider, Micheal Espinola Jr
Indexes:	[Date] [Thread] [Top] [All Lists]