[SGVLUG] Probably OT,
but is there a new virus transport being expoited?
Tom Emerson
osnut at pacbell.net
Sat Jun 30 11:01:21 PDT 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I seem to have received a rash of e-mails with a subject of
"<randomword>.pdf", and the e-mail itself consists of just a pdf file.
I did some checking, and it seems in 2001, some guy who goes by the name
of "zulu" wrote a proof-of-concept virus for pdf's dubbed "peachy" --
the document was benign for normal users (i.e., anyone using the free
/reader/ program) and had to be actively executed by users of the adobe
pdf /authoring/ software -- you had to click a link in the document to
execute some arbitrary/attached VBscript code. This code, of course,
remailed itself to 100 of your closest friends...
The comments from Adobe at the time were "in order for this to affect
the free reader program, we'd have to add code to read arbitrary
embedded files within a document, and we're /not likely/ do that..."
OK, so it's six years later -- has the unlikely happened?
- --
Top o' the Blog: And you thought <i>you</i> were the king of leisure time?
http://osnut.homelinux.net/mtblog/ya_index.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFGhppxV/YHUqq2SwsRApVXAJ98LPZS2lb6PBwxoyNnxBnD96MxeQCbB9kh
Zz7RH6cIXgXfilKhfj1Ibv0=
=PXbc
-----END PGP SIGNATURE-----
More information about the SGVLUG
mailing list