[Micronet] new 0day in Adobe Acrobat / Reader

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

[Micronet] new 0day in Adobe Acrobat / Reader

Jake -F Harwood
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Just a heads up from a vendor.


Adobe has confirmed that there is a new 0day in Adobe Acrobat / Reader
and there has been public exploit code seen in the wild. The AlertCon is
being raised to bring awareness to this issue as there is no patch
available. X-Force analysts are currently investigating and we will
provide more information as it becomes available. We urge customers to
use caution before opening unsolicited PDF files. We also recommend
disabling Javascript in Adobe Acrobat and Reader.

http://www.adobe.com/support/security/advisories/apsa10-02.html
http://isc.sans.edu/diary.html?storyid=9523
http://contagiodump.blogspot.com/2010/09/cve-david-leadbetters-one-point-lesson.html


https://www.vicheck.ca/md5query.php?hash=9c5cd8f4a5988acae6c2e2dce563446a


- --
- -----------------------------------------------------------------------
Jake-F Harwood     Systems and Network Security, IST
SNS Security     University of California, Berkeley


                                          Cell (510)390-2580
                                  Home (510)758-7512 (use at own risk)

   "Who is this General Failure and why is he reading my hard drive?" -F
        https://security.berkeley.edu/PGPkeys/PGPkeyJHarwood.txt
- -
- ------------------------------------------------------------------------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEcBAEBAgAGBQJMiBNlAAoJECIJRNHUFoUutCQH/3IJLxCZmyC+bcmjzLwyNIhk
NIp9Kv01FuVr45JldCGkywdJDGMpNnF2PbTX62N1YLTXLOERLjo/NvslHK8V8irx
NeReXBdjUOEYdAQMWX82mMFa+9yPrmVNeCRNMYpTSjQnxZoz2kj7aE5+WsneZ1/e
9GDCgQWeM/9WnghCusuVIaYTXTr3Y3wUzHrB/FfFSaXxYA7oqacLbejXYelZb+8A
K7dQiBI8586p7oIsLC8lRefWkuF6nwIMCVI/Zf7Cn+Tdm6rt2nVa9z1N0FW0kx1e
m0JmcHRssL/6IFNonRS/7JvUZkGbxZJE+1nDe9esvayJOb3Cb3M8SUyIFH+wiaE=
=IklU
-----END PGP SIGNATURE-----

 
-------------------------------------------------------------------------
The following was automatically added to this message by the list server:

To learn more about Micronet, including how to subscribe to or unsubscribe from its mailing list and how to find out about upcoming meetings, please visit the Micronet Web site:

http://micronet.berkeley.edu

Messages you send to this mailing list are public and world-viewable, and the list's archives can be browsed and searched on the Internet.  This means these messages can be viewed by (among others) your bosses, prospective employers, and people who have known you in the past.