#Login Register


  • 0 Vote(s) - 0 Average
Home 


Zero-day PDF exploit affects Adobe Reader 11 and earlier versions, researchers say
Anonymous Kritter Show this Post
02-16-2013, 06:28 AM #1
Anonymous Kritter Incognito Anonymous
 
DG News Service - Researchers from security firm FireEye claim that attackers are actively using a remote code execution exploit that works against the latest versions of Adobe Reader 9, 10 and 11.

"Today, we identified that a PDF zero-day [vulnerability] is being exploited in the wild, and we observed successful exploitation on the latest Adobe PDF Reader 9.5.3, 10.1.5, and 11.0.1," the FireEye researchers said late Tuesday in a blog post.

The exploit drops and loads two DLL files on the system. One file displays a bogus error message and opens a PDF document that's used as a decoy, the FireEye researchers said.

Remote code execution exploits regularly cause the targeted programs to crash. In this context, the fake error message and second document are most likely used to trick users into believing that the crash was the result of a simple malfunction and the program recovered successfully.

Meanwhile, the second DLL installs a malicious component that calls back to a remote domain, the FireEye researchers said.

http://www.computerworld.com/s/article/9...rchers_say
02-16-2013, 09:16 PM #2
Octo Mother Superior
Posts:43,015 Threads:1,474 Joined:Feb 2011
I fukn hate Adobe Reader. gaah.gif Don't even have it installed.
Anonymous Kritter Show this Post
02-18-2013, 12:02 AM #3
Anonymous Kritter Incognito Anonymous
 
I prefer viewing PDFs, especially PDFs online through this:

http://view.samurajdata.se/

It converts each page into an image. It's free and has zero advertisements.
02-18-2013, 12:13 AM #4
Octo Mother Superior
Posts:43,015 Threads:1,474 Joined:Feb 2011
Cool! I bookmarked that, thanks. I use Foxit right now, but I'm not that crazy about it either.



Home 




 



DISCLAIMER / Terms of Service (TOS):
Kritterbox.com - Socialize anonymously, commentary, discussion, oddities, technology, music and more!  This website is provided "as is" without warranty of any kind, either expressed or implied. kritterbox.com shall not be liable for any damages whatsoever, including, without limitation, those resulting from loss of use, data or profits, whether or not advised of the possibility of damage, and on any theory of liability, arising out of or in connection with the use or performance of this site or other documents which are referenced by or linked to this site.
This website exists solely for the purposes of exchange of information, communication and general entertainment. Opinions from posters are in no way endorsed by kritterbox.com. All posts on this website are the opinion of the authors and are not to be taken as statements of fact on behalf of kritterbox.com. This site may contain coarse language or other material that kritterbox.com is in no way responsible for. Material deemed to be offensive or pornographic at the discretion of kritterbox.com shall be removed. kritterbox.com reserves the right to modify, or remove posts and user accounts on this website at our discretion. kritterbox.com disclaims all liability for damages incurred directly or indirectly as a result of any material on this website. Fictitious posts and any similarity to any person living or dead is coincidental.
All users shall limit the insertion of any and all copyrighted material to portions of the article that are relevant to the point being made, with no more than 50%, and preferably less of the original source material. A link shall be visible in text format, embedded directly to the original source material without exception.
No third party links, i.e. blogs or forums will be accepted under any circumstances, and will be edited by staff in order to reflect the original source of copyrighted material, or be removed at the sole discretion of kritterbox.com.
Fair Use Notice:
This site may contain copyrighted material the use of which has not always been specifically authorized by the copyright owner. Users may make such material available in an effort to advance awareness and understanding of issues relating to economics, individual rights, international affairs, liberty, science, and technology. This constitutes a 'fair use' of any such copyrighted material as provided for in section 107 of the US Copyright Law. In accordance with Title 17 U.S.C.Section 107, the material on this site is distributed without profit to those who have expressed a prior interest in receiving the included information for educational and/or research purposes.
This Disclaimer is subject to change at any time at our discretion.
Copyright © 2011 - 2017 kritterbox.com