Bugtraq mailing list archives

RE: [Full-disclosure] Universal XSS with PDF files: highly dangerous

From: Larry Seltzer <Larry () larryseltzer com>
Date: Thu, 4 Jan 2007 08:36:53 -0500

"According to public reports, this vulnerability is addressed in Adobe

Acrobat Reader 8.0." 

I've actually tested it. On Reader 8 Acrobat you get a messagebox that
says "This operation is not allowed"

Larry Seltzer
eWEEK.com Security Center Editor
http://security.eweek.com/
http://blog.eweek.com/blogs/larry%5Fseltzer/
Contributing Editor, PC Magazine
larryseltzer () ziffdavis com

Current thread:

Re: [Full-disclosure] Universal XSS with PDF files: highly dangerous Juha-Matti Laurio (Jan 04)
- RE: [Full-disclosure] Universal XSS with PDF files: highly dangerous Larry Seltzer (Jan 04)
  - Re: [WEB SECURITY] RE: [Full-disclosure] Universal XSS with PDF files: highly dangerous RSnake (Jan 04)
- <Possible follow-ups>
- Re: RE: [Full-disclosure] Universal XSS with PDF files: highly dangerous Juha-Matti Laurio (Jan 04)
  - Message not available
    - Re: [Full-disclosure] Universal XSS with PDF files: highly dangerous pdp (architect) (Jan 08)