since ‎02-02-2016
‎10-12-2019
DamonDude
Level 1
Security Issue: javascript evaluated when generating a PDF from .htm/.html file DamonDude - Adobe LiveCycle
Hello there,We have a large scale Enterprise installation of Livecycle 3.2 and we are trying to absolve a PEN test security issue in livecycle.Basically if you feed a .htm or .html file into livecycle into the PDF generator, the javascript in that .htm/.html file gets evaluated. I know that with EAS 3.2 .htm/.html files are rendered using a slightly modified version of WebKit 2.0 which there are no options to turn off the evaluation of javascript, nor is it supported with WebKit 2.0 (if I rememb...
955
Views
0
Likes
0
Answers and Comments