Adobe Reader Javascript Blacklist Framework
Posted By: SecurityTube_Bot
Posted On: Mon 21 Feb 2011
Views: 3949
Share this video:
Share it on Facebook Share it on Twitter Share it on Reddit Share it on Digg Share it on Stumbleupon
Support SecurityTube:


Description:

The Adobe Reader and Acrobat JavaScript Blacklist Framework provides customers granular control over the execution of specific JavaScript API calls. The purpose of the Framework is to allow Adobe to protect customers against attacks that target a specific JavaScript API call, like the one referenced in Security Advisory APSA09-07.

In the video below, Didier Stevans shows a demo of the framework, where he disables the Util.Printf function. The full blog post is available here.

Tags: basics ,

Comments (None)

Login to post a comment