Malicious Web Site / Malicious Code: Adobe Acrobat & Reader util.printf JavaScript Vulnerability
Posted in CU*Secure.
Websense® Security Labs™ has received reports of a proof-of-concept (PoC) exploit code circulating in the wild, exploiting a vulnerability in Adobe Reader 8.1.2, and Adobe Acrobat 8.1.2.
The flaw is a stack buffer overflow that results when parsing specially crafted PDF files (CVE-2008-2992). Successful exploitation allows the attacker the same level of permission rights to the [...]
