Adobe Exploit in the wild - no patch

The place for what's new and going on in the tech, innovation, and science world.

Adobe Exploit in the wild - no patch

Postby Aspman » Fri Feb 20, 2009 11:46 am

http://secunia.com/advisories/33901/
http://www.theregister.co.uk/2009/02/20 ... r_exploit/

The vulnerability has been confirmed in versions 8.1.3 and 9.0.0 of Adobe Reader running on Windows XP Service Pack 3 and is presumed to work on other versions of Windows as well, according to this advisory from Shadowserver. Adobe for machines running Linux and Apple's OS X were not tested, but may also be vulnerable, Shadowserver's Steven Adair said.


Adobe has issued this advisory aknowledging a "critical vulnerability" in Reader. Updates won't be available until March 11 for version 9 and a later date for earlier versions. InsecureWeb has also issued details here.


http://insecureweb.com/javascript/newis ... loit-code/

Workaround -
http://www.foxitsoftware.com/pdf/rd_intro.php
"Man will never be free until the last king is strangled with the entrails of the last priest."
- Denis Diderot (1713-1784)
User avatar
Aspman
Frustrated Mad Scientist
 
Posts: 8871
Joined: Mon Jan 09, 2006 10:07 am
Location: Scotland

Re: Adobe Exploit in the wild - no patch

Postby Vorlin » Fri Feb 20, 2009 7:05 pm

Glad I don't use Adobe anything...
In the world of protection, one thing is for sure: security = 1 / convenience.
User avatar
Vorlin
Taz's very own Fireman [RIP]
 
Posts: 2378
Joined: Fri Jun 16, 2006 3:48 pm
Location: N. Augusta, SC


Return to Tech News Zone

Who is online

Users browsing this forum: No registered users and 24 guests

cron