Cybercriminals Exploit PDF Picture Filter to Embed Malware
Posted on: 04/30/2011 09:14 AM

Security software company Avast! catches cybercriminals using Adobe's own specifications to slip past antivirus scanners.

Cybercriminals Exploit PDF Picture Filter to Embed Malware


From PCWorld:
The vulnerability was found in the JBIGeDecode filter, a feature specifically intended for compressing monochrome images, and allowed attackers to use the JBIG2Decode specifications hide their encoded malicious paylod in order to get past antivirus scanners without being detected. The dangerous encoded content is targets a flaw identified as CVE-2010-0188, which allowed attackers to cause Adobe Reader and Acrobat to crash--and possibly gain complete control of your system.



Printed from NT Compatible (https://www.ntcompatible.com/news/story/cybercriminals_exploit_pdf_picture_filter_to_embed_malware.html)