Malicious hackers are targeting a previously unknown security hole in Adobe Reader and Acrobat to compromise Microsoft Windows machines, Adobe warned today.
Adobe says attackers are taking advantage of a newly discovered critical flaw that exists in Adobe Reader X (10.1.1) and earlier versions for Windows and Mac systems, and Adobe Reader 9.4.6 and earlier 9.x versions for UNIX, as well as Adobe Acrobat X (10.1.1) and earlier for Windows and Mac machines. A security bulletin warns of reports that the vulnerability is being actively exploited in “limited, targeted attacks in the wild against Adobe Reader 9.x on Windows.”
Adobe said it plans to ship an emergency update to address the vulnerability in Reader 9.x and Acrobat 9.x on Windows no later than the week of Dec. 12. Citing protections built into newer versions of its software, however, Adobe said it would not fix the flaw in Reader X or Acrobat X versions for Windows, Mac, or UNIX versions until Jan. 10, 2012, the date of its next scheduled quarterly security update. Adobe’s Brad Arkin explains more about the company’s reasoning behind this decision in a blog post published along with the advisory.
System Manufacturer/Model Number n/a OS Windows 7 Ultimate SP1 (64 bit), Windows XP SP3, Linux Mint 14 MATE (64 bit) CPU AMD Phenom II x6 1055T, 2.8 GHz Motherboard ASRock 880GMH-LE/USB3 Memory 8GB DDR3 1333 G-Skill Ares F3-1333C9D-8GAO (4GB x 2) Graphics Card ATI Radeon HD6450 Sound Card Realtek? Monitor(s) Displays Samsung S23B350 Screen Resolution 1920x1080
Mouse Wired Optical Case Tower Hard Drives Western Digital 1 TB (SATA), Western Digital 1.5 TB (SATA), Western Digital 2 TB (SATA) Internet Speed DSL Other Info Ubuntu 10.04 (64 bit) replaced with Linux Mint 14 MATE (64 bit) - 2013-01-14
RAM & Graphics Card Upgraded - 2013-01-13
Monitor Upgraded - 2012-04-20
System Upgraded - 2011-05-21, 2010-07-14
HDD Upgraded - 2010-08-11, 2011-08-24
Attackers Hit New Adobe Reader, Acrobat Flaw problems?