Follow Liquidmatrix

FacebookTwitterRSS

Subscribe by Email

Adobe 0-Day In The Wild…Again

In an announcement today the folks at Adobe let us in on an 0-day vulnerability that is causing issues for their Reader and Acrobat products. This has become the resident running joke in the security community.

From Adobe announcement:

A critical vulnerability exists in Adobe Reader 9.3.4 and earlier versions for Windows, Macintosh and UNIX, and Adobe Acrobat 9.3.4 and earlier versions for Windows and Macintosh. This vulnerability (CVE-2010-2883) could cause a crash and potentially allow an attacker to take control of the affected system. There are reports that this vulnerability is being actively exploited in the wild.

Adobe is in the process of evaluating the schedule for an update to resolve this vulnerability.

In the meantime refrain from opening files from untrusted sources blah blah blah. This hamster wheel of pain is trying at the best of times.

Article Link

(Image used under CC from elycefeliz)

Posted by on September 8, 2010. Filed under Disclosure,Vulnerability. You can follow any responses to this entry through the RSS 2.0. You can skip to the end and leave a response. Pinging is currently not allowed.

2 Responses to Adobe 0-Day In The Wild…Again

  1. Brooks

    September 8, 2010 at 4:14 pm

    I am not even surprised when I see Adobe 0 days at this point. How long until they decide it’s just time for a complete rewrite?

  2. Dave Lewis

    September 8, 2010 at 4:17 pm

    @Brooks I couldn’t agree more. It has gone well beyond the absurd at this point.

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>