You must Register or Sign in to your Cyware account to perform this action
×Once you are logged in, you will be able to:
Customize your feeds by selecting categories you like
Comment on or Like an article
Receive the latest security stories, trends, and insights in your inbox
Build your profile and login across multiple devices
Bookmark a story and read it later
- Home
- Hacker News
- Malware and Vulnerabilities
- Digital signatures in PDF applications exploited by researchers

Digital signatures in PDF applications exploited by researchers
Digital signatures in PDF applications exploited by researchers- February 27, 2019
- |
- Malware and Vulnerabilities
/https://cystory-images.s3.amazonaws.com/shutterstock_395265991.jpg)
- The researchers devised fake signatures to force their way into PDF viewer apps.
- Researchers could successfully attack 21 out of the 22 PDF viewers studied. Popular apps include Adobe Acrobat Reader, Foxit Reader as well as online validation services like DocuSign and Evrotrust.
Worth Noting
- Digitally signed PDFs are sometimes accepted as legally-binding documents under certain circumstances. Example: financial transactions.
- Out of 22 attacks committed on PDF viewers in the study, 21 of them were successful.
- PDF applications include the popular Adobe Reader DC and Foxit. Online signature validation services such as DocuSign and Evrotrust were also vulnerable.
- These methods were devised way before security updates were released for PDF applications considered in the study.
The attacks
- Universal Signature Forgery: This attack focuses on disabling verification by adding invalid content in the signature object or by removing references to the signature object.
- Incremental Saving Attack: It relies on a PDF feature called ‘incremental saving’. After this, the content, as well as the structure of the PDF, is slowly changed with different content.
- Signature Wrapping Attack: This attack altogether bypasses signature protection. Attackers then fill the document with malicious content.
Why it matters?
- Forging or manipulating a digitally signed PDF can help attackers to extract confidential information, upon which they can commit crimes such as theft.
- Private transactions done between organizations through digital documents can be compromised if these attacks are utilized.
Countermeasures
The researchers have also proposed countermeasures to remedy these attacks. This involves an algorithm to detect manipulations in signatures. These can be applied to most of the PDF viewer applications. However, it has a drawback as it fails to work for PDFs with multiple signatures. The paper indicates, “..the algorithm leads to one usability issue if multiple signatures are provided. Although these signatures are valid, only the one covering the entire document will be displayed as valid.”
Get such articles in your inbox
News
-
Previous News New report shows IoT-connected devices more vulnerable than ever
- February 27, 2019
- |
- Trends, Reports, Analysis
-
Next News Cloudborne vulnerability could allow attackers to implant backdoor in the BMC firmware
- February 27, 2019
- |
- Malware and Vulnerabilities
Popular News
Related News
-
A Third of Biometric Systems Targeted by Malware in Q3
- December 4, 2019
- |
- Trends, Reports, Analysis
Categories
Get such articles in your inbox
News
-
Previous News New report shows IoT-connected devices more vulnerable than ever
- February 27, 2019
- |
- Trends, Reports, Analysis
-
Next News Cloudborne vulnerability could allow attackers to implant backdoor in the BMC firmware
- February 27, 2019
- |
- Malware and Vulnerabilities
Popular News
Related News
-
A Third of Biometric Systems Targeted by Malware in Q3
- December 4, 2019
- |
- Trends, Reports, Analysis
Categories
