June 2019
Beginner to intermediate
660 pages
14h 30m
English
PDF file format-based exploits are those that trigger vulnerabilities in various PDF readers and parsers, which are made to execute the payload carrying PDF files, presenting the attacker with complete access to the target system in the form of a Meterpreter shell or a command shell; however, before getting into the technique, let's see what vulnerability we are targeting, and what the environment details are:
|
Test cases |
Description |
|
Vulnerability |
This module exploits an unsafe JavaScript API implemented in Nitro and Nitro Pro PDF Reader version 11. The saveAs() Javascript API function allows for writing arbitrary files to the filesystem. Additionally, the launchURL() function allows an attacker to execute local ... |
Read now
Unlock full access