[ - ] try 1 point 3.8 yearsJul 23, 2021 04:40:14 ago (+1/-0)
*WARNING!!! PDF!!! ===========
PDF!!!!
FBI/CIA/MOSSAD/SPLC/ADL keep trying to trick voat users into accidentally clicking on PDFs !!!
Many PDFs have zero day PDF exploits to root Adobe Acrobat and root Foxit (yes foxit too). THEY INFECT YOUR MACHINES so russian hackers can steal Steam passowrds, credit cards, and bitcoin passwords, and more.
Solution? only open PDF books uploaded over a year ago, or use a VM to run your pdf reader.
[ + ] try
[ - ] try 1 point 3.8 yearsJul 23, 2021 04:40:14 ago (+1/-0)
===========
PDF!!!!
FBI/CIA/MOSSAD/SPLC/ADL keep trying to trick voat users into accidentally clicking on PDFs !!!
Many PDFs have zero day PDF exploits to root Adobe Acrobat and root Foxit (yes foxit too). THEY INFECT YOUR MACHINES so russian hackers can steal Steam passowrds, credit cards, and bitcoin passwords, and more.
Solution? only open PDF books uploaded over a year ago, or use a VM to run your pdf reader.
COUNTLESS new exploits revealed year after year :
Adobe acrobat : https://www.cvedetails.com/product/497/Adobe-Acrobat-Reader.html?vendor_id=53
Foxit : https://www.cvedetails.com/product/16993/Foxitsoftware-Foxit-Reader.html?vendor_id=7654
Look at those ! 700 exploits!
Most are critical in importance. Many insert code into your operating system just by opening a PDF up , even not hooked to internet.
Linux too, not just Windows... ALL PDF readers on linux have allowed remote code insertion into kernel merely by reading PDFs.
The CIA and FBI spend millions of dollars creating linux PDF exploits off of PDF buffer overflows. NSA does too.
Remote code execution in Okular PDF reader for KDE:
https://www.cybersecurity-help.cz/vdb/SB2020031319
some require a click on a thing that is a action link though :
"KDE Okular before 1.10.0 allows code execution via an action link in a PDF document."
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9359
Heap-based buffer overflow in the RLE decompression functionality in the TranscribePalmImageToJPEG function:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2575
over a dozen for "Evince PDF reader"
https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=Evince
"XPDF?" 131 CVE Records ! :
https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=XPDF
Mupdf? 50 CVE Exploit records :
https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=Mupdf
Poppler library?* Fucking Dumpser fire full of exploits, 111 CVE Records :
https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=Poppler
Lots of "safe light secure linux PDF readers" use Poppler library. What a goddamned joke.
TL/DR : links on voat should WARN people if PDFs using prefix (pdf) in link!
[ + ] jsac
[ - ] jsac 1 point 3.8 yearsJul 23, 2021 08:27:08 ago (+1/-0)
[ + ] account deleted by user
[ - ] account deleted by user 0 points 3.8 yearsJul 23, 2021 09:06:37 ago (+0/-0)