Threat behavior
Exploit:JS/Pdfjsc.GO is a detection for specially-crafted PDF files that attempt to exploit software vulnerabilities in Adobe Acrobat and Adobe Reader. Once the malformed PDF files are opened by vulnerable versions of Adobe Acrobat and Reader, the embedded JavaScript is executed and loads the exploit.
Installation
These PDF files contain an embedded JavaScript that, when loaded (as when the files are opened in a vulnerable version of Adobe Acrobat or Adobe Reader) executes a shellcode that exploits the vulnerabilities. The shellcode may perform any action, such as downloading and running other malware.
Exploit:JS/Pdfjsc.GO usually arrives in the system when the user visits a Web page that contains a malicious PDF file or opens an e-mail message containing the PDF file as an attachment.
The vulnerabilities it attempts to exploit are the following:
Analysis by Tim Liu
Prevention