One can argue that it would be hard to find people who use Foxit Reader and were infected via PDFs, but this can follow as well from the fact that many more people use Adobe Reader.
We only suspect that the differences between Adobe Reader and other PDF viewers can efficiently reduce the number of shared vulnerabilities, but there is no information on how efficient this can be. All these applications deal with the same PDF documents so some vulnerabilities may be shared. But, this will not help if the payload is embedded in the PDF document.Īnother thing is that we really do not know how many Adobe Reader's vulnerabilities are present in other PDF readers. Blocking Internet access to the PDF viewer can help when the viewer is exploited and the malicious code runs in the memory of this viewer to download the payload from the Internet. This cannot be also blocked by blocking child processes for the PDF viewer. If you click on a hyperlink in the PDF document, then PDF viewer does not use the Intenet but simply the call is redirected to your default web browser. Click to expand.This will not work as well as you think.
0 kommentar(er)
