PDF file "peach color virus" is also from: chinabyte
Adobe's PDF file format is often considered to have absolute immunity to viruses. But now, a new virus is likely to spread in the subsidiary of the PDF file, thereby making the PDF file a pathway path of this new virus. On the morning of August 7, the famous network security company McAfee said they found this first virus that can be propagated using PDF files - "peach color virus". Fortunately, safety experts found that this virus can only spread through the software program of Adobe, that is, software programs for making PDF files. The ADOBE is free to read the Acrobat reader for reading the PDF file, and the virus is not infected. Sarah Rosenbaum, director of Adobe's Production Management Department, said that this virus does not have a way to spread in the Acrobat reader, and the code used by Acrobat to process the PDF file is not existed in the reader. The Acrobat software allows people to insert another file in the attachment of PDF, and "peach color virus" is using this weak point of the software to spread. Although the hazards showing the virus is not much harmful, this has been a warning that has been issued to people, namely the PDF file currently widely used in Internet browsers and emails has become a new channel for viral propagation. Richard Smith is the Technical Director of the Confidential Foundation. He sent this virus's message to the famous Bugtraq safety mailing list on Tuesday. He said that this is a new warning to people because even the one that is always considered to be the safest PDF file, it cannot escape (the bad luck by viral infection). It is very clear that if Adobe improves the new version of the reader to make it able to process the built-in attachment of the PDF file, the reader will eventually become a victim of the virus like "peach". Currently, Adobe fully capable of adding an operation function of the built-in attachment to the PDF file in the new version of the Acrobat reader. Although the company does not have the plan to do so, this does not mean that it will not do this in the future. In fact, in November last year, the computer emergency response team has announced a security vulnerability in the Acrobat software Windows version, and external attackers can use this vulnerability to fully control the computer that opens the PDF file. Acrobat later repaired this vulnerability. "Taoji Virus" is named after an additional peach game from a PDF file. This game is written in VBScript language. The most fascinating "love" virus is precisely written in this program. Acrobat allows the user to attach any of the non-PDF format files in the PDF file, then people can embed VBScript programs and other executables in the PDF file. "Taoji Virus" is actually embedded in a PDF file, which automatically uses the address in the Outlook address in the user's computer, bypassing the filter in Outlook sends propagation to others. Although the new version of Outlook generally blocks the VBScript file, it is not possible to hide the VBScript program hidden in the PDF file. According to an agreement signed by McAfee and Adobe, McAfee's killing virus software can scan the PDF file and kill the virus. Therefore, McAfee, next week, will further update the virus definition to detect "peach color virus". At present, the only feasible way to completely ban "Taoji Virus" is not allowed to attach VBScript programs in the PDF file. Adobe said that although this is a good way, many users of the company are predictable to use this feature, so Adobe does not have any intend to reject VBScript programs or other files in PDF files. .
