Trend Micro Discovers Another Adobe Vulnerability
Trend Micro detected TROJ_PIDIEF.WIA, a trojan that arrives as a mass email attachment. This trojan may also be downloaded by visiting malicious Web sites. According to Trend Micro’s malware blog, it “uses the heap spray technique to execute shellcode in its stream.” This, in turn, infects your system with the malicious backdoor file, BKDR_POISON.UC, and allows a malicious user to “execute any command on the affected system.”
Adobe will release a patch for this vulnerability on January 12, 2010. In the meantime, protect yourself by disabling JavaScript in Adobe Acrobat.
Under the Edit menu, select Preferences (or use the shortcut key Ctrl+K)- Select JavaScript in the left panel menu.
- Uncheck the “Enable Acrobat JavaScript” option.
- Hit OK to apply the new settings.
Like this post? Subscribe to the RSS Feed to get lots more!
We value your input. Join the conversation and leave your comments below.
