On CHOW: Sexy vampire party
BNET Business Network:
BNET
TechRepublic
ZDNet

April 28th, 2009

Exploit posted for brand-new Adobe PDF zero-day

Posted by Ryan Naraine @ 6:43 am

Categories: Adobe, Arbitrary Code Execution, Botnets, Browsers, Complex Attacks, Data theft, Denial of Service (DoS), Exploit code, Java, Malware, Patch Watch, Responsible disclosure, Viruses and Worms, Vulnerability research, Zero-day attacks

Tags: Adobe Systems Inc., Adobe PDF, Adobe Acrobat Reader, Proof-of-concept Exploit Code, Adobe PDF Reader Software, Security, Ryan Naraine

Proof-of-concept exploit code has been published for a new zero-day vulnerability haunting Adobe’s widely deployed PDF Reader software.

In a brief note posted to its PSIRT blog, Adobe confirmed it was investigating the issue, which affects Adobe Reader 9.1 and 8.1.4.  “We are currently investigating, and will have an update once we get more information,” according to Adobe’s David Lenoe.

More details are available in this advisory:

Adobe Reader ‘getAnnots()’ Javascript Function Remote Code Execution Vulnerability

Adobe Reader is prone to a remote code-execution vulnerability.

An attacker can exploit this issue to execute arbitrary code with the privileges of the user running the application or crash the application, denying service to legitimate users.

Reader 8.1.4 and 9.1 for Linux are vulnerable; other versions or platforms may also be affected.

Adobe’s PDF Reader software is a popular target for malware authors so, in the absence of a patch, users should consider using an alternative product.  A list of alternatives is available at pdfreaders.org.

Ryan NaraineRyan Naraine is a journalist and security evangelist at Kaspersky Lab. He manages Threatpost.com, a security news portal. Here is Ryan's full profile and disclosure of his industry affiliations.


Email Ryan Naraine

For daily updates on Ryan's activities, follow him on Twitter.

Subscribe to Zero Day via Email alerts or RSS.

  • Talkback
  • Most Recent of 15 Talkback(s)
Open Source vs. Proprietary
Because of the way open source projects work, anyone who wants to look at the code can do so. That means lots more eyeballs checking for vulnerabilities. Since most of those eyeballs belong to people ... (Read the rest)
Posted by: tmsbrdrs Posted on: 04/29/09 You are currently: a Guest | | Terms of Use
Just wrap Acroread in AppArmor if you use Linux  no_zd_user_name | 04/28/09
Use a better PDF Reader ...  chekmarx@... | 04/29/09
FOxIt PDF Reader  docqualizer | 04/29/09
Guess What? Foxit will be vulnerable too....  dunn@... | 04/29/09
RE: Exploit posted for brand-new Adobe PDF zero-day  jmcmillan@... | 04/29/09
PDF X-Change Reader  jmcmillan@... | 04/29/09
PDF X-Change Reader  jmcmillan@... | 04/29/09
RE: Exploit posted for brand-new Adobe PDF zero-day  flared0ne | 04/29/09
What's That, The "Holy" LINUX Is Vulnerable!?  John Westra | 04/29/09
uh, no  tmsbrdrs | 04/29/09
Are the alternatives really any better?  tgilbert@... | 04/29/09
Open Source vs. Proprietary  tmsbrdrs | 04/29/09
If it works DON T FIX IT  rdelaplaza | 04/29/09
RE: Exploit posted for brand-new Adobe PDF zero-day  Bilmekanikeren | 04/29/09
RE: Exploit posted for brand-new Adobe PDF zero-day  Bilmekanikeren | 04/29/09

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Essential Topics Click Here

advertisement

Recent Entries

advertisement
Click Here

Archives

Favorite Links

ZDNet Blogs

White Papers, Webcasts, and Downloads

SmartPlanet

  • Thought-provoking progressive ideas on diverse topics that intersect with technology, business, and life, and matter to the world at large. Visit SmartPlanet
  • More from IBM
  • Innovate your business' process model, play against the market, compete against others on our scoreboards and WIN! Try INNOV8 2.0: A BPM Simulator
  • Enabling Real-World Business Transformation through IBM Service Management Read the EMA Analyst Report
Click Here