> Since when can .PDF have autoexecuting code? I know that a while ago > Adobe had a buffer overrun that could be exploited by the PDF *creator* > tool, but not the reader. Are you saying there are others?
Here's from one Network World Fusion newsletters: Panda Software reported last week that Adobe has issued a patch for its Acrobat software that is used to read PDF document files. Used to transmit high-quality reproductions of documents across the Internet, the format was thought to be secure. But with all things Internet, there must be a hole. It turns out code can be embedded in a PDF file, which could be used to deliver a virus, Trojan or other nasty tidbit. Adobe recommends users install the following patch for protection. And here is the link to patched Acrobat Reader: ftp://ftp.adobe.com/pub/adobe/acrobat/win/4.x/ac405up2.exe
