gaurav bagdi

" Gaurav Bagdi is a 22 year old part time Blogger, Technical writer. Interested in day to day evolution in the field of technology. He’s the editor of Webketu - Technology Evolves. and owner of NetKetu. You can also catch him on twitter.”

Adobe addressed a list of 29 security-related flaws in Acrobat 9 and Adobe Reader 9 this week. The new 9.2 updater fixes security issues that Adobe calls critical for both Mac and Windows users.

As usual, Adobe’s software have a wider range of users and broader distribution around has always been a popular target for malware writers and Exploiters.
As we are keeping you up to date with the latest security releases, what we posted a couple of months back about Adobe Flash vulnerability allows a remote attack via a Pdf File.
Adobe rates the update as “crtical” and warns that one of the vulnerabilities (CVE-2009-3459) is actively being exploited.

Security company Trend Micro reported last week that it had discovered a zero-day exploit making use of this vulnerability. The malware consists of a PDF file with embedded JavaScript that executes arbitrary code using a technique called heap spraying.
A successful attack results in the installation of a backdoor that provides the attacker with unrestricted user-level access.

Affected software includes Adobe Reader 9.1.3 and Acrobat 9.1.3, Adobe Reader 8.1.6 and Acrobat 8.1.6 for Windows, Macintosh and UNIX, and Adobe Reader 7.1.3 and Acrobat 7.1.3 for Windows and Macintosh.

Updated software will become version 9.2, 8.17, or 7.14.
According to an Adobe security bulletin, “These vulnerabilities could cause the application to crash and could potentially allow an attacker to take control of the affected system.”

Like

Unlike

Tags: 8.1.6, 9.1.3, adobe, Adobe Reader 9.1.3, backdoor, heap spraying, macintosh, pdf exploit, trend micro, UNIX, windows, zero day

This entry was posted on Thursday, October 15th, 2009 at 9:09 am and is filed under Security News. You can follow any responses to this entry through the RSS 2.0 feed.