http://www.cerberus-security.net/Advisory.htmlSecurity Advisory for September 13th 2010
Severity: Critical
Adobe has warned that attacks are actively exploiting a previously unknown, “critical” vulnerability in Adobe Acrobat and Reader.
The 0day bug has been confirmed in all versions of 8 and 9 Acrobat and Reader releases for Windows, Macintosh, and Unix, including the latest versions, 8.2.4 and 9.3.4. A successful attack will yield full control to the attacker.
Adobe has yet to publish an official fix to this exploit; however Microsoft has expanded the scope of one of their tools to assist in blocking it from spreading on Windows based systems. At the time of this advisory, there are no proven ways to protect Macintosh and UNIX based systems. Adobe advises that the best course of action Macintosh and UNIX users have at this time is to disable Java Script inside of Acrobat.
The link to Microsoft’s tool is listed below. Please note due to the technical complexity of this process it is advised to forward to your IT support for assistance.
http://blogs.technet.com/b/srd/archive/ ... ploit.aspx
Acrobat 0day exploit.
-
Falundir X`Viento
- Knight of the Rose Croix (zomg French)
- Posts: 724
- Joined: Thu Jan 09, 2003 5:54 am
Acrobat 0day exploit.
This one is pretty wide reaching.
-
Ddrak
- Save a Koala, deport an Australian
- Posts: 17517
- Joined: Thu Jan 02, 2003 3:00 pm
- Location: Straya mate!
- Contact:
-
Arathena
- kNight of the Sun (oxymoron)
- Posts: 1622
- Joined: Fri Dec 20, 2002 4:37 pm
Re: Acrobat 0day exploit.
Fixed it for you.Ddrak wrote:Adobe's had a pretty crappy run forever.
Dd
Archfiend Arathena Sa`Riik
Poison Arrow
Poison Arrow
-
Freecare Spiritwise
- Grand Pontificator
- Posts: 3015
- Joined: Thu Mar 13, 2003 5:35 pm
Re: Acrobat 0day exploit.
I don't like Adobe but I do large insurance systems and that means a lot of printed documents, and that means PDF.
Isn't Microsoft working on their own portable format (XDoc or something) ? I'd love to ditch all things Adobe, but I'm not sure I ever see that happening.
Flash is also supposed to be replaced, but just like PDF, Adobe is so entrenched I'm not sure I see that happening either.
Isn't Microsoft working on their own portable format (XDoc or something) ? I'd love to ditch all things Adobe, but I'm not sure I ever see that happening.
Flash is also supposed to be replaced, but just like PDF, Adobe is so entrenched I'm not sure I see that happening either.
-
Taxious
- Rum Guzzler
- Posts: 5056
- Joined: Fri Apr 18, 2003 10:16 am
- Location: Denver, CO
Re: Acrobat 0day exploit.
Same.Freecare Spiritwise wrote:I'd love to ditch all things Adobe
Lorem ipsum dolor sit amet, consectetur adipisicing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua.
-
Fallakin Kuvari
- Rabid-Boy
- Posts: 4109
- Joined: Sun Jan 26, 2003 11:51 pm
- Location: Cincinnati, OH
Re: Acrobat 0day exploit.
This.Freecare Spiritwise wrote:I'd love to ditch all things Adobe
Warlord Fallakin Kuvari - 85 Wood Elf Warrior, Brell Serilis forever.
Grandmaster Nikallaf Kuvari - 70 Iksar Monk.
Grandmaster Nikallaf Kuvari - 70 Iksar Monk.
-
Ddrak
- Save a Koala, deport an Australian
- Posts: 17517
- Joined: Thu Jan 02, 2003 3:00 pm
- Location: Straya mate!
- Contact:
Re: Acrobat 0day exploit.
XPS.Freecare Spiritwise wrote:Isn't Microsoft working on their own portable format (XDoc or something)?
Interestingly enough, our office color printer supports XPS as a printing format natively, which makes printing from Win7 really, really easy.
Dd
