Are {Text-Only} Data Formats Safe? Or, Use This {LaTeX} Class File to Pwn Your Computer

Stephen Checkoway; Hovav Shacham; Eric Rescorla

Are Text-Only Data Formats Safe? Or, Use This LaTeX Class File to Pwn Your Computer

Stephen Checkoway, University of California, San Diego

Hovav Shacham, University of California, San Diego

Eric Rescorla, RTFM, Inc.

BibTeX

@inproceedings {267449,
author = {Stephen Checkoway and Hovav Shacham and Eric Rescorla},
title = {Are {Text-Only} Data Formats Safe? Or, Use This {LaTeX} Class File to Pwn Your Computer},
booktitle = {3rd USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET 10)},
year = {2010},
address = {San Jose, CA },
url = {https://www.usenix.org/conference/leet-10/are-text-only-data-formats-safe-or-use-latex-class-file-pwn-your-computer},
publisher = {USENIX Association},
month = apr
}

Download

Links

Paper:

http://usenix.org/event/leet10/tech/full_papers/Checkoway.pdf

Paper (HTML):

http://usenix.org/event/leet10/tech/techAbstracts.html#Checkoway

Slides:

http://usenix.org/event/leet10/tech/slides/checkoway.pdf

USENIX Conference Policies

Are Text-Only Data Formats Safe? Or, Use This LaTeX Class File to Pwn Your Computer

Stephen Checkoway, University of California, San Diego

Hovav Shacham, University of California, San Diego

Eric Rescorla, RTFM, Inc.

Links