Wednesday, March 25, 2009

Adobe Zero Day Exploit Patch

There was a security hole found in Adobe Acrobat Reader and Acrobat 9. Adobe reports..

This vulnerability would cause the application to crash and could potentially allow an attacker to take control of the affected system. There are reports that this issue has been being exploited for over 2 months.

This patch is important.

Many of us disable auto-updates, or just don't bother to install the newest version of the software we're using. This exploit in Adobe reader 9.1 and Acrobat 9.1 can be triggered with no action from the user. It can use the Windows Indexing Service to trigger the bug.

This vulnerability can be triggered simply by sending someone a malicious PDF document, and using Windows Explorer's ability to read the file automatically.

I would suggest getting the patch asap.

No comments:

Post a Comment