Adobe liveCycle PT / Hacking

From: spammailme@gmail.com
Date: Wed Dec 13 2006 - 11:58:20 EST

Next message: Ernest: "Get Your Víagra Here __ %junk"
Previous message: Davide Carnevali: "Re: Pen-testing - pricing model"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

('binary' encoding is not supported, stored as-is) All -

Has anyone expirence in testing the Adobe liveCycle solution. In a nutshell, customers are emailed a pdf doc which has forms controls embeded, they click through a shopping path and a resulting (encrypted) *.xdp file is attached to an email. It really is an xml doc and can be viewed by changing the ext.

Proxies will not work here as HTTP is not used. Basically it is (enc) XML over SMTP. Maybe tcpdump can provide insight.

In looking at the .xdp file it does enc key fields and I believe has an embeded hash yet not sure.

Any one tested this tech.? Any suggestions?

Thanks
Don W.

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------

Next message: Ernest: "Get Your Víagra Here __ %junk"
Previous message: Davide Carnevali: "Re: Pen-testing - pricing model"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:57:27 EDT