Tags: pdf forensic

Rating:

## Pt. 1

The first part of the challenge is to find the exploit file and the Number & Date of its CVE.
At first sight I can see that there are 3 files in the recycle bin.

Lets export it and upload it to [virustotal](https://www.virustotal.com/).
Success! Somebody (probably the challenge author or some kind of bot) has posted a comment with the CVE number to the [report](https://www.virustotal.com/gui/file/a1427cea9075350a8f60839c9244c8470c4c5ee996257f34d6195243b91e8c3d)

CVE-2008-2992

Now that we know the CVE and that it is relatively safe to handle the file as the exploit is long fixed, we can move on to the next message.

Original writeup (https://github.com/xXLeoXxOne/writeups/blob/main/CrewCTF%202022/PolicyViolation.md).