The Inquirer-Home

Adobe looks into a zero day vulnerability in Reader and Acrobat

Found by Fireeye in Adobe PDF Reader 9.5.3, 10.1.5 and 11.0.1
Thu Feb 14 2013, 11:52
Adobe headquarters in San Jose

SOFTWARE COBBLER Adobe is investigating a report by security firm Fireeye that there's a zero day vulnerability in its Reader and Acrobat software products.

Fireeye said in a blog post that it received PDF files tainted with malicious software that can take advantage of the newly discovered flaw.

"We identified that a PDF zero-day is being exploited in the wild, and we observed successful exploitation on the latest Adobe PDF Reader 9.5.3, 10.1.5, and 11.0.1," Fireeye said.

Upon successful exploitation, the flaw will drop two DLLs. The first DLL shows a fake error message and opens a decoy PDF document, which is common in targeted attacks. The second DLL in turn drops the callback component, which talks to a remote domain.

Adobe confirmed in a statement on its blog that it has been made aware of the vulnerability found by Fireeye and said that it will provide an update as soon as it has more information.

"We are currently investigating this report and assessing the risk to our customers. Please continue monitoring the Adobe PSIRT blog for the latest information," the statement read.

Fireeye said it is refraining from releasing any technical details of the zero day exploit as it has jointly agreed with Adobe to do so.

"This post was intended to serve as a warning to the general public," Fireeye said. µ

 

Share this:

blog comments powered by Disqus
Advertisement
Subscribe to INQ newsletters

Sign up for INQbot – a weekly roundup of the best from the INQ

Advertisement
INQ Poll

Coding challenges

Who’s responsible for software errors?