According to Net-Security, Adobe applications top the list of four applications identified in US NIST.
Metasploit Framework add this Zero Day exploit in their latest database.
http://downloads.securityfocus.com/vulnerabilities/exploits/adobe_media_newplayer.rb
Malicious PDF files crafted with this Zero-Day exploit are in wilds. So as usual, I recommend everyone to be more extra vigilant when receiving PDF files through internet.
Temporary solution for Adobe Reader either one
- Disable the "Disable JavaScript" features in your Adobe Reader.
- Edit registry (.reg) file
[HKEY_CLASSES_ROOT\AcroExch.Document.7]
"EditFlags"=hex:00,00,00,00
- Seek for alternative PDF reader that available in market.
0 comments:
Post a Comment