DarkFiber Consulting – IT Managed Services

Adobe Reader Exploit Circulating

November 7th, 2008 . by DarkFiber Consulting

DarkFiber Consulting is aware of public reports of active exploitation of a recent Adobe Reader vulnerability. This exploit appears to arrive in the form of a maliciously crafted PDF file and leverages the JavaScript buffer overflow vulnerability addressed in Adobe Security Bulletin APSB08-19. Successful exploitation may allow an attacker to execute arbitrary code or cause a denial-of-service condition. Additionally, the reports indicate that this exploit is currently undetectable by common antivirus applications.

DarkFiber Consulting encourages users and administrators to do the following to help mitigate the risk:

  • Review Adobe Security Bulletin APS08-19 and update to Adobe Reader 9.
  • Use caution when opening untrusted files.
  • Install antivirus software and keep the virus signatures up to date.