Home
> Client Side Attacks > Beta release of PDFInjector
Beta release of PDFInjector
I just wrote this script that I called PDFInjector. Its available at http://code.google.com/p/pdfinjector/
It injects the Collab getIcon exploit available at http://milw0rm.com/exploits/9579 into any non-password protected PDFs.
You can check out the video here.
http://www.securitytube.net/Exploitation-u…t%29-video.aspx
I’m thinking of integrating it with some MITM tools for pdf on the fly replacement either via iframe or normal link replacement or integrating some email sending functions into the script.
I have only tested this in BT4 and Windows XP. Let me know if this doesnt work for you. Thanks
Categories: Client Side Attacks
the download link isnt working.Maybe upload to rapidshare or mediafire?
Google deleted my project site w/o informing me. I recreated the new site. You can download it here.
Let me know if it doesnt work. I’m not sure if this is the latest code release.
http://code.google.com/p/pdfinjector1
Your script sounds great and I would like to try but I’m not able to download it. Could you email me or repost to google? Thanks!
They’ve deleted that one to…
Hello :)—
the link is not work?
“Your client does not have permission to get URL /p/pdfinjector1/ from this server.”
upload to mediafire maybe?
thanks
hi milo i cannot get this no permission error from code.google.com please upload them else where
I have uploaded it to http://rapidshare.com/files/351021889/pdfinjector7.zip
Please let me know if anyone of you still have any issues downloading. Thanks
The link is working fine now.. the zip file is password protected.. so Password? 😛
thank u..
The password is ‘password’ without the quotes (:
The Google Code page gives this error:
Forbidden
Your client does not have permission to get URL /p/pdfinjector/ from this server.
I have uploaded it to http://rapidshare.com/files/351021889/pdfinjector7.zip
Please let me know if anyone of you still have any issues downloading. Thanks. The password is password
Thanks Milo,
I tried the script in Acrobat Reader 8 and it did successfuly open port 4444 (on a WinXP SP3 box), but the port closed as soon as Acrobat Reader closed. Is that how it’s supposed to work?
Also, as soon as I connect from a remote box running metasploit to port 4444, Acrobat Reader crashes.
p.s. Is version 8 or 9 of your script available some place other than Google?
http://rapidshare.com/files/351021889/pdfinjector7.zip
this link is also deleted..
how can I get a pdfinjector?
You can find PDFInjector v0.7 here on pastebin . http://pastebin.com/WvdSMyPp