More adobe reader and acrobat (PDF) trouble

Published: 2013-02-13. Last Updated: 2013-02-13 10:47:49 UTC
by Swa Frantzen (Version: 1)
3 comment(s)

While lacking any kind of detail, Adobe's PSIRT team is reporting that they are aware of "Adobe Reader and Acrobat XI (11.0.1) and earlier versions being exploited in the wild".

--
Swa Frantzen -- Section 66

3 comment(s)

Comments

For a little more information see:
http://blog.fireeye.com/research/2013/02/in-turn-its-pdf-time.html
Symantec seems to peg these new ones as involving Adobe Flash Player CVE-2013-0633 Buffer Overflow Vulnerability and Adobe Flash Player CVE-2013-0634 Remote Memory Corruption Vulnerability.
Neither of these CVEs are mentioned in Adobe's February 12th bulletins (APSB13-05, APSB13-06)
See:
http://www.symantec.com/security_response/writeup.jsp?docid=2013-021311-5217-99
http://www.securityfocus.com/bid/57788

http://www.symantec.com/security_response/writeup.jsp?docid=2013-021311-3104-99
http://www.securityfocus.com/bid/57787
CVE-2013-0640, CVE-2013-0641

https://www.adobe.com/support/security/advisories/apsa13-02.html


Diary Archives