We came across a fantastic video last week that two local NoVA infosec pros put together demonstrating a simple exploit against Adobe Acrobat and Reader XI. In the video Kris and Alice show opening an “infected” PDF from within a web browser and as a file on their desktop. In their demonstrations after they close the document, the exploit runs its payload. In this case the payload simply invokes the Windows Calculator however someone with a more nefarious mind could execute almost anything they want (e.g., installing a key logger, backdoor, botnet, etc.). The important thing to note here is that Kris and Alice are using the latest version of the Adobe products, both of which include their new “super” sandbox. I haven’t followed it closely but I’m guessing (hoping) Adobe has patched this vulnerability by now.
Do you know if this vulnerability patched yet? Let us know in the comments below. Today’s post pic is from DiscoverSkills.com. See ya!