Security Hole in PDF Reader Could Expose Local Files
http://news.netcraft.com/archives/2005/ ... files.html
引言回覆:
"If an XML script is embedded in JavaScript, it is possible to discover the existence of local files, Adobe said in an advisory. "An attacker could then use the information gathered for malicious purposes. However the impact is minimized due to the fact that the existence of local files can only be discovered if the complete filenames and paths are known in advance by the attacker."
Solution:
Get Adobe Reader 7.0.2 or disable JavaScript in Adobe Reader.
登入
註冊
問答集
搜尋
