Latest Adobe Zero-day is Serious Business

Thursday, February 14, 2013

Mike Lennon

306708aaf995cf6a77d3083885b60907

Adobe late Wednesday confirmed the existence of two critical vulnerabilities in Adobe Reader and Acrobat XI for Windows and Macintosh that are being exploited in active attacks.

The vulnerabilities were assigned CVE-2013-0640 and CVE-2013-0641.

The exploits have been seen in extremely targeted attacks against high profile targets, and are a sophisticated effort that appear to be the first to successfully escape Adobe’s “protected mode” sandbox.

Make no mistake about it; this attack is serious business and not the work of amateurs.

“[The attack] is very sophisticated and leveraged a few advanced exploitation techniques,” Zheng Bu, senior director of security research at FireEye, told SecurityWeek.

Read The Full Story at SecurityWeek.Com

Possibly Related Articles:
10172
Enterprise Security Phishing Vulnerabilities
Adobe Adobe Reader vulnerability sandbox CVE-2013-0640 CVE-2013-0641
Post Rating I Like this!
The views expressed in this post are the opinions of the Infosec Island member that posted this content. Infosec Island is not responsible for the content or messaging of this post.

Unauthorized reproduction of this article (in part or in whole) is prohibited without the express written permission of Infosec Island and the Infosec Island member that posted this content--this includes using our RSS feed for any purpose other than personal use.

Most Liked