Title :
Malicious PDF Documents Explained
Author_Institution :
Contraste Europe NV
Abstract :
What makes a PDF file malicious? PDF designers and the PDF reader software architects never intended for files to be able to modify the operating system running the PDF reader. But security researchers and malware authors found ways to exploit PDF readers´ software bugs and to creatively use the PDF language, enabling them to produce PDF documents that execute arbitrary code. Embedded files are a good example of this design philosophy. The PDF language allows files to be embedded inside PDF documents.PDF reader software designers have begun using Windows security features such as data execution prevention (DEP) and address space layout randomization (ASLR) to prevent exploits from executing.
Keywords :
document handling; operating systems (computers); program debugging; security of data; PDF language; malicious PDF documents; malware authors; operating system; security researchers; software bugs; Computer crime; Malware; Portable document format; Software; Malware; PDF; Windows security;
Journal_Title :
Security & Privacy, IEEE
DOI :
10.1109/MSP.2011.14
