Adobe has reacted quickly to patch the JBIG2Decode vulnerability that could infect your computer with no user interaction. Adobe announced the flaw on February 20 and experts at the time recommended disabling JavaScript to stop any malicious attacks that exploited the vulnerability.
Shortly after, Didier Stevens an IT security professional at Contraste Europe reported how a computer with Windows Indexing Service and Adobe Reader 9.0 installed could be infected by simply saving an infected PDF file. Windows Indexing Service is a standard Windows Operating System feature that provides an index of files on the system.
Adobe committed to patching the flaw on Adobe Reader and Acrobat and escalated the fix after learning that the flaw could allow an attack by downloading and saving infected PDF's to your computer hard drive and viewing it using Internet Explorer.
This type of exploit will continue to grow in popularity as hackers and malware purveyors search for new ways to get past defenses and gain access to your network and your data. The take-away here is to understand that you are vulnerable to attack at any time and to plan your security posture to minimize loss in the event your systems are compromised and accessed by intruders.
{rokintensedebate}
Share this
Digg
Del.icio.us
StumbleUpon
Slashdot
Furl
Yahoo
Technorati
Newsvine
Googlize this
Blinklist
Facebook
Wikio
Print
E-mail
Tags