February 26, 2009, 10:57AM
Adobe PDF exploit code analysis
Comment Websense researcher Hermes Li has posted a blow-by-blow walkthrough (with screenshots) of the Adobe Acrobat/Reader vulnerability that's currently under attack.
Excerpt from the blog post:
"This vulnerability is different than the one found at the end of last year (Exploit Action with PDF OpenAction) in Adobe PDF reader. This vulnerability allows the attacker to overwrite memory with executable shell code that uses "Heap Spray" technology in Javascript when parsing a specially crafted JBIG2Decode image object."
Also see: Adobe under fire for poor security response.
Recommended Reads
Commenting on this Article is closed.
Today's Most Popular
- DHS Warns About Threat Of Mobile Devices In Healthcare
- Another Cybersecurity Bill Runs Into Trouble on Capitol Hill
- Hijacked Web Sites Among The Most Visited On Google's Black List
- Like Those Wikipedia Ads? They Mean You're Infected With Malware!
- Senator Seeks More Info On DOJ Location Tracking Practices
Most Commented Stories
-
Facebook Open to Comments on Proposed Privacy Policy Changes (5)
-
Adobe Reverses Course, Plans Free Updates for Illustrator, Photoshop, Flash Professional (4)
-
Spammers Targeting Pinterest Using Point-And-Click Tools (1)
-
FBI Concerned About Bitcoin Usage Among Cybercriminals (4)
-
CERT Warns On Critical Hole In SCADA Software By Italian Firm Progea (1)
Newsletter Sign-up
Take Our Poll
The Internet Crime Complaint Center recently warned of malware targeting travelers connecting to Wi-Fi. When traveling, do you
Connect to anything
21%
Only connect to password-protected, secure connections
38%
Only use websites with HTTPS
28%
I don’t pay attention to how I access the internet while traveling
14%
Total votes: 58
Follow Threatpost
 |  |  |  |
| Tumblr |
