Zero-day Exploit in PDF With Adobe Reader

← Back to Stories (view on slashdot.org)

Zero-day Exploit in PDF With Adobe Reader

Posted by CowboyNeal on Saturday September 22, 2007 @03:05AM from the be-on-alert dept.

hankwang writes "Security researcher Petko Petkov, who is known for his recent discovery of a vulnerability with Quicktime in Firefox, claims to have discovered an exploit that allows arbitrary code execution when a maliciously crafted PDF document is opened in any version of Adobe Reader. Petkov did not disclose any technical details other than a video, but claims on his blog that Adobe has acknowledged the vulnerability. If this exploit goes wild, it could cause some serious problems, as PDFs are usually automatically opened from web browsers and widely used and trusted by corporate users."

8 of 188 comments (clear)

Min score:

Reason:

Sort:

xpdf etc by eneville · 2007-09-22 03:08 · Score: 5, Funny

my xpdf brings all the boys to the yard and they're like, its better than yours

--
Why UNIX?
smug by ch0ad · 2007-09-22 03:10 · Score: 4, Funny

i bet it doesnt work with ubuntu's pdf viewer :p
/smug

about time i got modded as a troll neway
1. Re:smug by doombringerltx · 2007-09-22 04:04 · Score: 4, Funny
  
  If saying linux is more secure than windows is your idea of trolling slashdot, then you *really* must be new here
2. Re:smug by astrosmash · 2007-09-22 05:14 · Score: 5, Funny
  
  A lot of things don't work with Ubuntu's pdf viewer.
  
  --
  ENDUT! HOCH HECH!
3. Re:smug by Anonymous Coward · 2007-09-22 05:53 · Score: 1, Funny
  
  Like a pdf itself, for example...
Re:FYI: Vista not affected by nwbvt · 2007-09-22 03:26 · Score: 4, Funny

Well yeah, it can't affect an operating system if no one is running it.
Sorry, couldn't resist.

--
Mathematics is made of 50 percent formulas, 50 percent proofs, and 50 percent imagination.
Re:Terminology Police! by Anonymous Coward · 2007-09-22 03:44 · Score: 2, Funny

Ok you're in charge of policing the expression "zero-day exploit", and I'll take care of "defective by design". Good hunt.
Hint to editors... by operagost · 2007-09-22 05:59 · Score: 4, Funny

If the story's a day old before you report it, it's no longer a "zero-day" exploit.

--

Gamingmuseum.com: Give your 3D accelerator a rest.