Hackers target unpatched Adobe Reader, Acrobat flaw

Adobe Systems Inc. said Monday it is investigating reports that attackers are exploiting a previously unidentified security hole in its Acrobat and PDF Reader software to break into vulnerable computers.

The acknowledgment coincided with an alert published by the Shadowserver Foundation, a nonprofit group that tracks the spread of malicious programs that criminals use to control infected systems remotely. Shadowserver member Steven Adair said the flaw is present in the most recent versions of Adobe Acrobat and Reader.

Adair warned that security experts have observed cyber crooks using the vulnerability in targeted attacks since at least Dec. 11, but that more widespread attacks are likely to emerge over the next few weeks. In addition, few anti-virus vendors currently detect malicious PDF files harboring this exploit.

At the moment, there is no patch available for this flaw, and Adobe’s brief advisory offers little in the way of mitigation advice.

http://voices.washingtonpost.com/securityfix/2009/12/hackers_target_unpatched_adobe.html

Would be nice to put it in the Security Warning Thread
http://forum.avast.com/index.php?topic=52252.0

Sure glad I don’t use Adobe anymore! :o

I never liked adobe reader anyways, if foxit reader werent around i wouldnt read any more pdf files.

Adobe doesnt care for the client, if they did care they wouldnt force us to install many craps along what we need.

No they dont deserve anything from me…

if it’s the same, and I guess it is, it’s been posted by Polonus already, there’s a temporary fix from adobe (registry change) available until an actual patch is out
http://www.adobe.com/support/security/advisories/apsa09-07.html

Hackers uses every thing to get in This is not a new info , they will look for every thing to get into other’s computer , why can’t they find a better thing to do?
why not just take Drugs least Drug Dealers Go out in the air or talk to people not just Sit in their Room causing damage like cowards.

The sad point is… Adobe does help the hackers to invade our OS, i wish everyone would mail adobe to stop force instaling us crap and just let ourselfs use the program for what its suposed to do… how do they expect people to pay for the adobe software like this… >:(

Arent they famous enough for the dreamweaver and photoshop?