TrustedSource - Blog - New Adobe Reader vulnerability exploited in the wild

Home

Threats and Trends

TrustedSource™ Blog

New Adobe Reader vulnerability exploited in the wild

November 11st, 2008

Last week Adobe issued a security update which addressed several critical vulnerabilities in Adobe Reader and Acrobat versions. Three days later, malicious PDF documents appeared in the wild, exploiting an input validation issue in the util.printf JavaScript method (CVE-2008-2992) leading to remote code execution as reported by the fellow handlers at the Internet Storm Center.

With Proactive database update #102 we have extended our existing generic detection routine for any malicious PDF documents, named “Exploit.PDF.Shellcode.gen”, by an additional detection for this new vulnerability - named “Exploit.PDF.Utilprintf.gen”.

At the moment we are not aware of any of the notorious web exploit toolkits to leverage this new Adobe Reader vulnerability yet.

Author: Anti-Malware Team

Back to TrustedSource™ Blog overview

Secure Computing Corporate Homepage | Contact | Privacy Policy | Disclaimer

Copyright © 2007-2008 Secure Computing Corporation. All Rights Reserved.

ANY INFORMATION PROVIDED BY SECURE COMPUTING ON THIS BLOG ARE OFFERED "AS IS" WITH NO EXPRESS OR IMPLIED WARRANTIES, CLAIMS, PROMISES OR GUARANTEES ABOUT THE ACCURACY, COMPLETENESS, OR ADEQUACY OF THE INFORMATION CONTAINED IN OR LINKED TO AND NO RIGHTS ARE CONFERRED. BY USING THIS BLOG, YOU ASSUME ALL RISK FOR YOUR USE. IN NO EVENT WILL SECURE COMPUTING BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, INCIDENTAL, EXEMPLARY, OR OTHER DAMAGES WHETHER OR NOT SECURE COMPUTING HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH LOSS OR DAMAGE. SECURE COMPUTING HAS NO OBLIGATION TO POST BLOG SUBMISSIONS OR RESPONSES.