PDF malware targets 2012 Olympic Games fans

F-Secure, a Finnish security firm, has issued a warning on their weblog about a London 2012 Olympic Games themed competition schedule containing PDF malware which has come to their attention.

The PDF exploits CVE-2010-2883:

Stack-based buffer overflow in CoolType.dll in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a PDF document with a long field in a Smart Independent Glyphlets (SING) table in a TTF font, as exploited in the wild in September 2010.

As we recently covered on Planet PDF, most security exploits of PDFs are able to thrive because of the large numbers of PDF users who have not yet upgraded to the latest versions of Adobe Reader and Adobe Acrobat, which contain fixes for these security exploits.

The exploit covered in CVE-2010-2883 has been patched in the latest versions of Adobe Acrobat and Adobe Reader, available from the Adobe website.

You May Also Like

About the Author: Karl De Abrew

Leave a Reply