Researchers find 134 flaws in the way Word, PDFs, handle scripts


BLACK HAT ASIA Security researchers have devised a tool that detects flaws in the way apps like Microsoft Word and Adobe Acrobat process JavaScript, and it’s proven so effective they’ve found 134 bugs – 59 of them considered worthy of a fix by vendors, 33 assigned a CVE number, and 17 producing bug bounty payments totaling $22,000.

The tool is named “Cooper” – a reference to the “Cooperative mutation” technique employed by the tool.

Read more…