Adobe Reader Exploit Circulating |
|
US-CERT is aware of public reports of active exploitation of a recent Adobe Reader vulnerability. This exploit appears to arrive in the form of a maliciously crafted PDF file and leverages the JavaScript buffer overflow vulnerability addressed in Adobe Security Bulletin APSB08-19 . Successful exploitation may allow an attacker to execute arbitrary code or cause a denial-of-service condition. Additionally, the reports indicate that this exploit is currently undetectable by common antivirus applications.
US-CERT encourages users and administrators to do the following to help mitigate the risk:
- Review Adobe Security Bulletin APS08-19
and update to Adobe Reader 9. - Use caution when opening untrusted files.
- Install antivirus software and keep the virus signatures up to date.
Read more: |