Slashdot Mirror

← Back to Stories (view on slashdot.org)

Security Researcher Drops 15 Vulnerabilities for Windows and Adobe Reader

Posted by Soulskill on from the go-big-or-go-home dept.

mask.of.sanity writes: Google Project Zero hacker Mateusz Jurczyk has dropped 15 remote code execution vulnerabilities, including a single devastating hack against Adobe Reader and Windows he reckons beats all exploit defenses. He said, "The extremely powerful primitive provided by the vulnerability, together with the fact that it affected all supported versions of both Adobe Reader and Microsoft Windows (32-bit) – thus making it possible to create an exploit chain leading to a full system compromise with just a single bug – makes it one of the most interesting security issues I have discovered so far." Jurczyk published a video demonstration of the exploit for 32-bit and 64-bit systems. His slides are here [PDF].

8 of 117 comments (clear)

  1. PDF link to PDF exploit by Carewolf · · Score: 5, Funny

    Sorry, I am not clicking on a PDF link that demonstrates a PDF attack.

  2. Drops? by thechemic · · Score: 5, Insightful

    He dropped them from his to do list?

    He was carrying them around and dropped them?

    Slang for "He published them" ?

    He dropped them from his research list?

    He dropped the vulnerabilities from his own systems?

    Apparently "Slashdot" means to "Slash" the English language with slang. Can we please "DROP" the amateur reporting styles?

    --
    Let's make like a bird... and get the flock outta here.
    1. Re:Drops? by belthize · · Score: 5, Funny

      He held the exploits palm down before dropping them and then simply walked away exclaiming "Mateusz out".

    2. Re:Drops? by drinkypoo · · Score: 4, Funny

      Apparently "Slashdot" means to "Slash" the English language with slang. Can we please "DROP" the amateur reporting styles?

      If you're not a slashdot subscriber, who cares what you think? If you are a slashdot subscriber, that goes double.

      --
      "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
  3. Re:"Curses! Foiled again!" says NSA. by Bob+the+Super+Hamste · · Score: 4, Insightful

    The NSA is an offensive organization

    You could have just stopped there.

    --
    Time to offend someone
  4. Re:I wish I could quit you, Adobe Reader. by thechemic · · Score: 4, Informative

    We installed Foxit Enterprise Reader and disabled in-browser PDF viewing for all browsers. This forces PDF downloads and everything displays wonderfully. It's lightning fast too!

    --
    Let's make like a bird... and get the flock outta here.
  5. Re:Getting tired... by drinkypoo · · Score: 4, Interesting

    I use SumatraPDF. AFAIK it's the smallest windows PDF reader which is worth using, I believe it's smaller than Foxit. But it's been a while since I installed Foxit, so a comparison would take effort.

    --
    "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
  6. Re:No surprises there by Fortran+IV · · Score: 4, Informative

    It would have been nice if The Register's somewhat hysterical FA (much less the Slashdot summary) had made clear up front that Microsoft patched most of the Windows vulnerabilities all the way back in March (MS15-021), and the last one in May (MS15-044). According to j00ru's blog post, Adobe patched their holes in May as well.

    j00ru was clear enough in his blog post, but El Reg decided to stick in one line: "Microsoft and Adobe issued patches in three updates."—six paragraphs down, looking more like an image caption than part of the article. Sheesh.

    --
    I figure by 2030 or so my 6-digit UID will be something to brag about.