PPT Slide
Security flaw Acrobat plug-ins certification mechanism
- Sign Reader Integration Key License Agreement with Adobe
- Pay $100 to obtain Reader Certification digital certificate from Adobe
- Use this certificate to Reader-certify any plug-in
- Only certified plug-ins will be loaded by Acrobat Reader
- In some cases (e.g. when opening document protected with WebBuy or DocBox) only plug-ins certified by Adobe are permitted to be loaded
- Only data from PE Header is used for checking
How certificate validity is checked
- Modify code of any plug-in certified by Adobe to load non-certified plug-in and pass control to it. Take care to not modify data in PE header
How to bypass plug-ins certificate checking