Dailydave mailing list archives
Re: 0day, it may not be
From: Nate Lawson <nate () root org>
Date: Thu, 01 Apr 2010 09:55:23 -0700
dave wrote:
https://forum.immunityinc.com/board/thread/1199/exploiting-pdf-files-without-vulnerabili/?page=1#post-1199 D2 points out rightfully that everyone with the D2 CANVAS Exploit Pack (email admin () immunityinc com now for pricing! :>) has known about this particular feature of PDF's for over two years. D2 comes with an NDA, so it's not surprising it's not "General Knowledge" but the well-funded among you should at least stop acting so surprised. :> Speaking of funding, Immunity is hiring. https://www.immunityinc.com/downloads/OpeningsApril2010.pdf
At least the copy I downloaded didn't have any exploit code. Can't say that for any other copy (targeted attack?) Kudos for sending your job announcement via the same vector as your exploit. -- Nate _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- 0day, it may not be dave (Apr 01)
- Re: 0day, it may not be I)ruid (Apr 01)
- Re: 0day, it may not be Thierry Zoller (Apr 02)
- Re: 0day, it may not be Nate Lawson (Apr 01)
- Re: 0day, it may not be Rob Fuller (Apr 01)
- Re: 0day, it may not be cocoruder . (Apr 02)
- Re: 0day, it may not be Nicolas RUFF (Apr 02)
- Re: 0day, it may not be I)ruid (Apr 01)