Windows' Built-In PDF Reader Exposes Edge Browser To Hacking (softpedia.com)

Posted by BeauHD on Wednesday March 2, 2016 @10:57AM from the hit-the-floor dept.

An anonymous reader writes: Edge, Microsoft's new browser, uses the WinRT PDF library to automatically embed and present PDF files while navigating the web. This is what Java does with applets, and Flash with SWF files -- it unintentionally allows a hacker to append malicious code to PDF files and trigger drive-by attacks, which exploit WinRT vulnerabilities to target Windows 10 users. All that an attacker needs to do is to find and create a database of WinRT vulnerabilities it could leverage to distribute his malware.

1 of 97 comments (clear)

Min score:

Reason:

Sort:

I could become POTUS by Anonymous Coward · 2016-03-02 11:02 · Score: 0, Offtopic

If I get an US birth certificate and convince the delegates to vote for me!
Its so simple!

All that an attacker needs to do is to find and create a database of WinRT vulnerabilities it could leverage to distribute his malware.