Re: Adobe acrobat / Adobe Reader 6 can read local files

From: Nick Leoncavallo (nleoncavallo_at_yahoo.com)
Date: 10/14/04

  • Next message: Luke Macken: "[ GLSA 200410-10 ] gettext: Insecure temporary file handling" 
    Date: 14 Oct 2004 13:36:55 -0000
To: bugtraq@securityfocus.com
    ('binary' encoding is not supported, stored as-is) In-Reply-To: <0I5H001195EBYO@smtp13.wxs.nl>

    This can be defeated by disallowing multimedia operations in the "Trust Manager" settings.

    I'm not sure I want to the other setting labeled "Allow documents to open other files and launch other applications" either, but it doesn't have an affect on Jelmer's example.

    - Nick

    >
    >Adobe acrobat / Adobe Reader 6 can read local files
    >
    >Description
    >
    >Acrobat/ Acrobat reader is software for viewing and printing Adobe Portable
    >Document Format (PDF) files. Adobe PDF files can be viewed on most major
    >operating systems.
    >
    >Version 6 of this program has an issue with the way it handles embedding
    >macromedia flash files directly into a pdf. This allows a malicious website
    >operator to steal local files from a user's hard drive including cookie
    >files
    >
    >Technical Details:
    >
    >Version 6 of the pdf format introduced a new way to embed movies directly
    >into the pdf file. In previous versions one could only link to media in
    >external files
    >
    >Adobe reader extracts this swf file from the pdf and saves it under a random
    >name to your temp dir, on windows XP and 2000 this dir is usually located at
    >
    >C:\Documents and Settings\<username>\Local Settings\Temp
    >
    >It then appears to "link" directly to this saved file in effect making your
    >local hard disk the codebase for this swf file and allowing it read access
    >to all of the files on your hard drive
    >
    >Systems affected:
    >
    >Adobe reader 6
    >Adobe acrobat 6
    >
    >Demonstration:
    >
    >Create a text file called c:\jelmer.txt then proceed to click on
    >
    >http://62.131.86.111/security/acrobat/demo.pdf
    >
    >Risk: medium
    >
    >
    >

  • Next message: Luke Macken: "[ GLSA 200410-10 ] gettext: Insecure temporary file handling"

    Relevant Pages

    • Re: Word2007 does auto open PDF after Save as command
      ... Word MVP web site http://word.mvps.org ... but did notice that the Adobe set of values do not include ... information there to enable you to make the changes for PDF file ... I have already installed Adobe Reader 9.2, ...
      (microsoft.public.word.docmanagement)
    • RE: [Full-Disclosure] Re: Adobe acrobat / Adobe Reader 6 can read local files
      ... The demo uses script behind the scenes to start the movie, ... Subject: Re: Adobe acrobat / Adobe Reader 6 can read local ... > Document Format (PDF) files. ...
      (Full-Disclosure)
    • Re: Copying PDF images into Windows Paint
      ... I download both as PDF files, which I view in Adobe Reader 9. ... With IBD I can do this easily by clicking on the cartoon, which turns blue, then right-clicking on it which lets me copy it, and then using Ctrl+V to paste it into Paint in Windows XP. ... Anyone know how I can get this to work with the latter newspaper in PDF form as it does with the former? ... I realize this is more likely an Adobe problem than a Windows problem, but the relevant Adobe newsgroups seem to be abandoned, I haven't been able to find anything about it on the Adobe site, and I have no idea where else I could get the information. ...
      (microsoft.public.windowsxp.general)
    • Re: Adobe file to Word 6 Document
      ... And when you have the PDF open in Adobe Reader (the new official name of the ... Word MVP FAQ site: http://www.word.mvps.org ...
      (microsoft.public.word.newusers)
    • Re: Converting Word to PDF but links dont work
      ... > This is an Adobe settings issue. ... I use Adobe Pro version 7. ... > links in the document are carried over into the .pdf file. ...
      (microsoft.public.word.docmanagement)