[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Millions of PDF invisibly embedded with your internal disk paths

To: "Thor (Hammer of God)" <thor@xxxxxxxxxxxxxxx>
Subject: Re: Millions of PDF invisibly embedded with your internal disk paths
From: Patrick Webster <sflist@xxxxxxxxxxx>
Date: Wed, 25 Nov 2009 20:06:40 +1100

I agree. Discovering the local path may be considered a risk, but in
most cases the risk is nil.

Consider compiled binaries. They also leak paths of the developer's
compile environment (mainly PDB -
http://support.microsoft.com/kb/121366). E.g. My firefox.exe is:

e:\builds\moz2_slave\win32_build\build\obj-firefox\browser\app\firefox.pdb

This reminds me of the iPhone worm. Everyone knew about the default
root password years ago... it is not like people weren't already
scanning for gaolbroken phones before worms were released >:)

Then again, the worm brought attention to the fact.

PDF's are mainly used for two reasons:

1) Prevent end-user modification
2) Because Microsoft Word conceals information & tracks changes etc,
and too many government & enterprise organisations have been bitten by
it that PDF is a rule of thumb. At least in my experience.

Considering that, perhaps for the PDF format specifically this could
be an issue, under the assumption that consumers use PDF
/specifically/ to prevent data leakage.

-Patrick

References:
- Millions of PDF invisibly embedded with your internal disk paths
  - From: Inferno
- RE: Millions of PDF invisibly embedded with your internal disk paths
  - From: Thor (Hammer of God)

Prev by Date: rPSA-2009-0156-1 sun-jdk sun-jre
Next by Date: [ GLSA 200911-03 ] UW IMAP toolkit: Multiple vulnerabilities
Previous by thread: RE: Millions of PDF invisibly embedded with your internal disk paths
Next by thread: CORE-2009-0908: Autodesk SoftImage Scene TOC Arbitrary Command Execution
Index(es):
- Date
- Thread