All Questions
44
questions
1
vote
0
answers
134
views
Malware in a PDF
I opened a PDF yesterday.
How large would a PDF be that has malware? The one I downloaded was approximately 5 MB.
If I opened the PDF on a browser, would the browser be infected?
For some context: I ...
1
vote
1
answer
135
views
Does PDF level compression implicitly cleans file of malware?
Recently I've been looking into PDF files security, specifically about malware exploiting vulnerabilities in PDF readers. I thought about one thing - does compressing PDF file (for example, by using ...
0
votes
0
answers
144
views
I am trying to identify suspicious content within a PDF file
I have a PDF file that has been sent to me as part of a suspicious email. I viewed the email as message source from within outlook. This gave me all raw text within the email. I copied this to ...
0
votes
0
answers
41
views
How to "clean" PDF to remove non-text and non-images in Product User Manual? [duplicate]
I need guidance on, with the least security risk, how to edit Product User Manuals and Engineering Drawings PDFs from the internet.
Antivirus is insufficient, according to advice from a website which ...
0
votes
0
answers
2k
views
How to inspect for potential malware on pdf attachment?
I received an email at work the other day from a client (with the correct email address) that had a pdf attached. When I opened the pdf, it said the client had required the recipient to login to ...
0
votes
1
answer
196
views
Using PDF files from dubious sources
In one of my university courses, the lecture materials (solutions to homework assignments) are not fully supplied by the university itself, but have to be created by the students themselves: The ...
0
votes
2
answers
4k
views
Is it still possible to embed executables in PDF in 2022?
I have searched and found those posts how to embed exe file to pdf? and https://stackoverflow.com/questions/2941700/can-i-embed-an-exe-payload-in-a-pdf-doc-ppt-or-any-other-file-format, but they are ...
0
votes
1
answer
607
views
Do pdf files pose a higher security risk than regular image files (png, jpeg, etc.)?
Do pdf files pose a higher security risk than regular image files (png, jpeg, etc.)? In my understanding is that most image files don't carry any security risk because all exploits were fixed, but ...
1
vote
0
answers
609
views
A PDF ran GetAdaptersAddresses. Should I be concerned?
I received and opened a PDF that ran:
GetTickCount
IsDebuggerPresent
SetWindowsHookExW
Sleep
GetAdaptersAddresses
These are the 2 files it wrote:
C:\Windows\ServiceProfiles\LocalService\AppData\...
1
vote
2
answers
561
views
Vulnerabilities in Receiving User-Submitted PDF Files Through HTTP(S)
For context; I have a web application that allows users to upload a PDF file from which the web app extracts certain information by parsing it. The app then sends this information to another server ...
4
votes
3
answers
3k
views
Is Firefox's new JavaScript support within PDF files a security concern?
Historically, we have learned that many security vulnerabilities and exploits have resulted from allowing document files to contain executable code, whether it be JavaScript, VBScript, another ...
0
votes
2
answers
2k
views
Is it impossible to have a PDF file execute a command without abusing any exploits?
We are running a purple team which includes attempting to run a malicious PDF on the target system. The targeted user is well aware of the exercise so there is no concerns about an AV picking the ...
4
votes
3
answers
13k
views
Gmail warns about encrypted PDF file
I recently received a PDF file that, when attached to a gmail message, causes a warning to be displayed as follows:
Encrypted attachment warning – Be careful with this attachment. This message ...
0
votes
0
answers
1k
views
Android 10 downloaded suspicious files without my permission
This is my first question on this forum so please let me know if I need to clarify anything.
My Android 10 Pixel 2 just downloaded 2 files without my permission today, both named something to the ...
5
votes
1
answer
2k
views
Can the conversion of a malicious PDF to image be exploitable?
Let's say I want to allow the customers of my website to upload PDF documents. What would be more safe to:
Convert the PDF to image using a library and store it in my file server as an image? Can the ...