New Adobe Acrobat [Reader] 0-Day On the Loose / CVE-2009-4324

« previous next »

Print

Pages: [1] Go Down

Author Topic: New Adobe Acrobat [Reader] 0-Day On the Loose / CVE-2009-4324 (Read 9214 times)

0 Members and 1 Guest are viewing this topic.

December 15, 2009, 06:50:14 am

Read 9214 times

SysAdMini

Administrator
Hero Member
Offline
3335

New Adobe Acrobat [Reader] 0-Day On the Loose / CVE-2009-4324

http://www.shadowserver.org/wiki/pmwiki.php/Calendar/20091214

http://www.symantec.com/connect/blogs/zero-day-xmas-present

http://blogs.adobe.com/psirt/2009/12/new_adobe_reader_and_acrobat_v.html

Logged

Ruining the bad guy's day

December 15, 2009, 03:25:57 pm

Reply #1

SysAdMini

Administrator
Hero Member
Offline
3335

Re: New Adobe Acrobat [Reader] 0-Day On the Loose

http://www.f-secure.com/weblog/archives/00001836.html

http://extraexploit.blogspot.com/2009/12/adobe-cve-2009-4324-in-wild.html

Logged

Ruining the bad guy's day

December 15, 2009, 07:49:09 pm

Reply #2

MysteryFCM

Administrator
Hero Member
Offline
1693
Personal Text
Phishing Phanatic

Re: New Adobe Acrobat [Reader] 0-Day On the Loose

Wonder if it's just a coinkydink that Piradius's network is involved?

Logged

Regards

Steven Burn
I.T. Mate / hpHosts
it-mate.co.uk / hosts-file.net

December 16, 2009, 07:46:26 am

Reply #3

SysAdMini

Administrator
Hero Member
Offline
3335

Re: New Adobe Acrobat [Reader] 0-Day On the Loose

Adobe Reader media.newPlayer() Analysis (CVE-2009-4324)
http://vrt-sourcefire.blogspot.com/2009/12/adobe-reader-medianewplayer-analysis.html

Logged

Ruining the bad guy's day

December 16, 2009, 09:28:37 pm

Reply #4

SysAdMini

Administrator
Hero Member
Offline
3335

Re: New Adobe Acrobat [Reader] 0-Day On the Loose

Adobe CVE-2009-4324 in the wild - (0day) - part 0.1 - browsing C&Cs
http://extraexploit.blogspot.com/2009/12/adobe-cve-2009-4324-in-wild-0day-part.html

Logged

Ruining the bad guy's day

December 17, 2009, 11:54:23 am

Reply #5

SysAdMini

Administrator
Hero Member
Offline
3335

Re: New Adobe Acrobat [Reader] 0-Day On the Loose

New Adobe Acrobat Zero-Day
http://www.symantec.com/connect/blogs/new-adobe-acrobat-zero-day

Logged

Ruining the bad guy's day

December 28, 2009, 06:33:31 pm

Reply #6

SysAdMini

Administrator
Hero Member
Offline
3335

Re: New Adobe Acrobat [Reader] 0-Day On the Loose

Adobe CVE-2009-4324 in the wild - (0day) - part 0.4 - yourenter.com
http://extraexploit.blogspot.com/2009/12/adobe-cve-2009-4324-in-wild-0day-part_28.html

another sample :

http://www.malwaredomainlist.com/forums/index.php?topic=2640.msg13598#msg13598

Logged

Ruining the bad guy's day

December 28, 2009, 10:07:49 pm

Reply #7

SysAdMini

Administrator
Hero Member
Offline
3335

Re: New Adobe Acrobat [Reader] 0-Day On the Loose

more samples, all are part of Eleonore exploit pack

t0rb.info/google/pdf.php
tonugood.cn/pdf.php

Logged

Ruining the bad guy's day

December 29, 2009, 02:16:22 am

Reply #8

cleanmx

Special Members
Hero Member
Offline
3405

Re: New Adobe Acrobat [Reader] 0-Day On the Loose

no hope adobe may release a urgent patch see:

http://www.h-online.com/security/news/item/Despite-increasingly-frequent-attacks-no-update-for-Adobe-s-Reader-891151.html

--gerhard

Logged

December 29, 2009, 06:49:53 pm

Reply #9

SysAdMini

Administrator
Hero Member
Offline
3335

Re: New Adobe Acrobat [Reader] 0-Day On the Loose

sample

nnfoehfeff.com/sv777/pdf.php
still poor detection

http://www.virustotal.com/analisis/3d098273531877f6bac89d07c1a5041f052c4371fce28588d25bf7825bc33c76-1262112705 1/41
eTrust-Vet 35.1.7203 2009.12.29 PDF/Pidief!generic

Logged

Ruining the bad guy's day

December 29, 2009, 10:48:31 pm

Reply #10

SysAdMini

Administrator
Hero Member
Offline
3335

Re: New Adobe Acrobat [Reader] 0-Day On the Loose

A quick look within the recent PDF zero day
http://blog.fortinet.com/a-quick-look-within-the-recent-pdf-zero-day/

Logged

Ruining the bad guy's day

December 29, 2009, 11:10:50 pm

Reply #11

SysAdMini

Administrator
Hero Member
Offline
3335

Re: New Adobe Acrobat [Reader] 0-Day On the Loose

Another exploit for this vulnerability

http://wepawet.cs.ucsb.edu/view.php?hash=7d5a05af3bd04ebb22bf6f7ee50b3dee&t=1262129074&type=js

Logged

Ruining the bad guy's day

January 04, 2010, 10:27:29 am

Reply #12

SysAdMini

Administrator
Hero Member
Offline
3335

Re: New Adobe Acrobat [Reader] 0-Day On the Loose CVE-2009-4324

Sophisticated, targeted malicious PDF documents exploiting CVE-2009-4324
http://isc.sans.org/diary.html?storyid=7867

Logged

Ruining the bad guy's day

January 04, 2010, 10:44:25 am

Reply #13

SysAdMini

Administrator
Hero Member
Offline
3335

Re: New Adobe Acrobat [Reader] 0-Day On the Loose / CVE-2009-4324

Selling Adobe exploit
http://seclists.org/fulldisclosure/2009/Dec/492

Logged

Ruining the bad guy's day

Print

Pages: [1] Go Up

« previous next »

SMF 2.0.19 | SMF © 2021, Simple Machines
Aqua Style by Diego Andrés
XHTML
RSS
WAP2

Page created in 0.091 seconds with 19 queries.