Forgot your password?
typodupeerror
Security Software

$50,000 Zero-Day Exploit Evades Adobe's Sandbox, Say Russian Analysts 56

Posted by timothy
from the kicking-sand-in-your-face dept.
tsu doh nimh writes with this excerpt from Krebs on Security: "Software vendor Adobe says it is investigating claims that instructions for exploiting a previously unknown critical security hole in the latest versions of its widely-used PDF Reader software are being sold in the cybercriminal underground. The finding comes from malware analysts at Moscow-based forensics firm Group-IB, who say they've discovered that a new exploit capable of compromising the security of computers running Adobe X and XI (Adobe Reader 10 and 11) is being sold in the underground for up to $50,000. This is significant because — beginning with Reader X — Adobe introduced a 'sandbox' feature aimed at blocking the exploitation of previously unidentified security holes in its software, and until now that protection has held its ground. Adobe, meanwhile, says it has not yet been able to verify the zero-day claims."
This discussion has been archived. No new comments can be posted.

$50,000 Zero-Day Exploit Evades Adobe's Sandbox, Say Russian Analysts

Comments Filter:

This process can check if this value is zero, and if it is, it does something child-like. -- Forbes Burkowski, CS 454, University of Washington

Working...