Home » Archive

Articles tagged with: didier stevens

Acrobat 9, Adobe, Adobe Reader, Adobe Reader 9, Editorials, General News, PDF Security »

[6 Apr 2010 | No Comment | ]

Jeremy Conway, product manager at NitroSecurity (no relation to Nitro PDF Software) has taken the weakness in PDF readers that Didier Stevens of Belgium discovered last week, and extended it to created a PDF worm that can freely wriggle its way around from PDF to PDF.

Adobe Acrobat, Adobe Reader »

[6 Mar 2009 | No Comment | ]

The official patch for the recently announced security flaw in Adobe Acrobat and Adobe Reader is still roughly a week away, but in the mean time, a number of third parties have taken this opportunity to promote their own products, which aren’t affected by the security flaw.

Adobe Acrobat, PDF Security »

[11 Jan 2009 | No Comment | ]

In a recent series of blog posts, Didier Stevens has been demonstrating how to add digital signatures to a variety of file types. Last week he covered PDF: the tutorials is relatively straight-forward, simply going through the steps of how-to add a digital signature to a PDF, but for anyone who hasn’t done this before it could be quite useful.

Adobe Acrobat »

[4 Sep 2008 | 2 Comments | ]

A cursory glance, or rather quick search at Google will reveal that the topic of redacting PDF has been hot for a looong time.
During my time at Planet PDF, we even ran a review of a US government employee’s efforts at redaction gone wrong in which a thought-to-be-redacted report revealed names, training procedures and other secrets.
Nope, this is not a new issue — there’s a swagger of “paid-for” software you can find (in addition to functionality included in Acrobat 8 and 9), using all types of methods — usefully listed …

General News, PDF Reader »

[27 May 2008 | No Comment | ]

IT security professional Didier Stevens has highlighted a potential exploit in PDF Stream Objects which could be used to cause a PDF file to balloon in size, prompting Computerworld to label it the ‘PDF equivalent of the Zip bomb, or a PDF Bomb’.
Using filter parameters and filter cascading Stevens was able to create document that was only 2642 bytes in size, but when opened, decompressed to 1GB of data. This, as you can probably imagine, would cause some PDF readers to freeze up.
I recommend reading some of Didier Stevens other …