Adobe released a critical security advisory for all platforms. From the advisory:
"A critical vulnerability exists in Adobe Reader 9.3.4 and earlier versions for Windows, Macintosh and UNIX, and Adobe Acrobat 9.3.4 and earlier versions for Windows and Macintosh. This vulnerability (CVE-2010-2883) could cause a crash and potentially allow an attacker to take control of the affected system. There are reports that this vulnerability is being actively exploited in the wild.
Adobe is in the process of evaluating the schedule for an update to resolve this vulnerability."
Other than the announcement of the advisory, no additional details are available in the Adobe Product Security Incident Response Team blog.
Edit Note: Via my friend, Randy, a more indepth look at the vulnerability: Adobe Reader 0day under active attack
Release date: September 8, 2010
Vulnerability identifier: APSA10-02
CVE number: CVE-2010-2883
Platform: All
References:
- Adobe - Security Advisories: APSA10-02 - Security Advisory for Adobe Reader and Acrobat
- Adobe Product Security Incident Response Team
No comments:
Post a Comment