0 Day threat/multiple spam messages "Here you have" [VIRUS]

So here’s the deal as provided by http://secunia.com/advisories/41340/ and http://www.adobe.com/support/security/advisories/apsa10-02.html

This is an Adobe issue.

Secunia Advisory SA41340

Adobe Reader / Acrobat Font Parsing Buffer Overflow Vulnerability

Secunia Advisory
SA41340

Release Date - 2010-09-08

Last Update - 2010-09-09

Criticality level - Extremely critical

Impact - System access

Where - From remote

Solution Status - Unpatched

Software:

Adobe Acrobat 8.x
Adobe Acrobat 9.x
Adobe Reader 8.x
Adobe Reader 9.x

CVE Reference(s) CVE-2010-2883

Description

A vulnerability has been discovered in Adobe Reader, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to a boundary error within the font parsing in CoolType.dll and can be exploited to cause a stack-based buffer overflow by e.g. tricking a user into opening a specially crafted PDF file.

The vulnerability is confirmed in versions 8.2.4 and 9.3.4. Other versions may also be affected.

NOTE: The vulnerability is currently being actively exploited.

Solution - Do not open untrusted files.

Provided and/or discovered by - Reported as a 0-day.

Search This Blog

Certification Prep – The 20 Minute Workout