April 26, 2023, 3:50 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

In 2022, Zscaler’s ThreatLabz performed vulnerability hunting for some of the most popular PostScript interpreters using a custom-built syntax-aware fuzzer. The PostScript interpreters that were evaluated include Adobe Acrobat Distiller and Apple’s PSNormalizer. At the time of publication, ThreatLabz has discovered three vulnerabilities (CVE-2022-35665, CVE-2022-35666, CVE-2022-35668) in Adobe Acrobat Distiller and one vulnerability (CVE-2022-32843) in Apple’s PSNormalizer. This blog presents how the syntax-aware fuzzer was developed and analyzes the results.


PostScript Language


PostScript is a stack-based programming language, …

acrobat adobe adobe acrobat apple aware blog cve fuzzer hunting language operations popular programming results vulnerabilities vulnerability zscaler

Palo Alto Engineer

@ Booz Allen Hamilton | Undisclosed Location - USA, VA, Reston

Systems Administrator

@ Cognosante | Camp Humphreys, South Korea

Consultor de Seguridad de la Información (Future project)

@ Unisys | Home Based Peru

Cloud DevOps Engineer

@ Booz Allen Hamilton | USA, VA, McLean (8283 Greensboro Dr, Hamilton)

Cloud DevOps Engineer

@ Booz Allen Hamilton | USA, VA, McLean (8251 Greensboro Dr)

Sr. Systems Administrator

@ KBR, Inc. | USA, Colorado Springs, 2424 Garden of the Gods Rd, Colorado