Flash/PDF zero day

[SysAdMini]

http://www.infosecblog.org/2009/07/flash-zero-day.html

iDefense has seen a Flash zero day exploit within a PDF file during a recent zero day attack investigation.

Its hard to believe that at one point in time PDF files were considered safe.

http://blogs.adobe.com/psirt/2009/07/potential_adobe_reader_and_fla.html

http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-072209-2512-99&tabid=1

Trojan.Pidief.G is a Trojan horse that arrives in a .pdf file and exploits a vulnerability in Adobe Flash Player.

[SysAdMini]

New 0-Day Attacks Using PDF Documents
http://www.avertlabs.com/research/blog/index.php/2009/07/22/new-0-day-attacks-using-pdf-documents/

Update on Adobe Reader, Acrobat and Flash Player Issue
http://blogs.adobe.com/psirt/2009/07/update_on_adobe_reader_acrobat.html

We are in the process of developing a fix for the issue, and expect to provide an update for Flash Player v9 and v10 for Windows, Macintosh, and Linux by July 30, 2009 (the date for Flash Player v9 and v10 for Solaris is still pending). We expect to provide an update for Adobe Reader and Acrobat v9.1.2 for Windows, Macintosh, and UNIX by July 31, 2009.

[SysAdMini]

Who is Exploiting the Adobe Flash 0-day?
http://blog.fireeye.com/research/2009/07/who-is-exploiting-the-flash-0day.html

[SysAdMini]

http://twitter.com/pusscat/statuses/2800878687

Heads up: there are currenty 2 distinct adobe 0day exploiting different vulns in the wild.

[SysAdMini]

Flash in the pdf? Another vulnerability with Adobe PDF/Flash
http://www.sophos.com/blogs/sophoslabs//?p=5524

[SysAdMini]

Adobe 0-day update
http://vrt-sourcefire.blogspot.com/2009/07/adobe-0-day-update.html

[SysAdMini]

Who is Exploiting the Adobe Flash 0-day? - Part 2
http://blog.fireeye.com/research/2009/07/who-is-exploiting-the-adobe-flash-0day-part-2.html