- It was not possible to evaluate this services, because we had no pdf document containing a signature which the service would trust.Please note that we do not provide any exploit, due to the reason that the services are already fixed and thus it would not be possible to test the PoCs against any services. You can get all Proof-of-Concept exploits in one tar.gz file via the following link. SWA - Signature Wrapping Attack CVE-2018-18689.ISA - Incremental Saving Attack CVE-2018-18688.USF - Universal Signature Forgery CVE-2018-16042.- Application is not vulnerable to the attack.- Application is vulnerable to the attack.Security Evaluation: ISA, SWA, and USF Attacks (2019) Desktop Viewer Applications No feedback despite multiple contact attempts: Foxit PDF und Foxit PhantomPDF (Mac) 4.0+Ĭonfirmed message receipt (no feedback regarding patch):.Foxit PDF und Foxit PhantomPDF (Win) 9.7.2+.: Application is not vulnerable to any shadow attack variantĪll bugs have been reported by the CERT-Bund. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |