Why does Stack Overflow scan your resume for viruses?

5 pointschrisstpierre6y ago3 comments

I just uploaded my resume to Stack Overflow, and it shows "scanning for viruses". Is it really necessary to scan a pdf for viruses?

3 comments

Yes, because there are ways to trigger a malware install or Viruses using a PDF files.

Example:

* https://www.welivesecurity.com/2018/05/15/tale-two-zero-days... (a remote-code execution vulnerability in Adobe Reader and a privilege escalation vulnerability in Microsoft Windows triggered via PDF)

Any file uploaded should be scanned especially when you are uploading something which is then downloadable by someone else such as this example.

PDFs have been a major malware vector.

j / k navigate · click thread line to collapse

Yes, because there are ways to trigger a malware install or Viruses using a PDF files.

Example:

Any file uploaded should be scanned especially when you are uploading something which is then downloadable by someone else such as this example.

PDFs have been a major malware vector.

j / k navigate · click thread line to collapse