26-10-2007, 17:08
|
|
|
|
חבר מתאריך: 08.11.02
הודעות: 32,894
|
|
פרצת אבטחה קריטית בקבצי PDF
Security News
Avira warns against vulnerability in PDF files
Tue, 23 October 2007
Attackers infiltrate PCs with a Trojan through vulnerability in Adobe
Tettnang, 23 October 2007 – The German IT Security Expert Avira warns against infected PDF documents that are sent through spam emails with infected attachments. The PDF document contains an exploit code that exploits a vulnerability in Adobe versions that have not been updated. A Trojan is loaded when the attachment is opened due to a vulnerability in the Adobe software and the already known so-called URI vulnerability without the user doing anything. It only affects computers that operate with Windows XP and the Internet Explorer 7 as well as various versions and products of Adobe software.
The flaw in Adobe products has been known for some time, but hackers had never exploited it up to now. Avira assesses the danger as critical, as even opening the PDF document is enough to start the malicious code. Due to the fact that the infected PDF document has already appeared with different file names, we cannot make any detailed statements on the file name of the attachment. However, the distinctive feature is that the email attachments are smaller than 4 kilobytes, which is rather untypical for PDF documents.
Avira recommends that all users who have installed the described software combination on their computer update their virus protection. The virus protection Avira AntiVir detects the compromised PDF document as EXP/CVE-5020.A and the Trojan that is loaded as TR/Drop.LdPinch.dvx.
http://www.avira.com/en/security_ne...luecke_pdf.html
זהירות אם מקבלים PDF בקובץ מצורף למייל, במיוחד אם הקובץ קטן מ 4 קילובייט, שזה גודל מאוד לא טיפוסי לקבצי PDF.
_____________________________________
חתימתכם הוסרה כיוון שלא עמדה בחוקי האתר. לפרטים נוספים לחצו כאן. תוכלו לקבל עזרה להתאמת החתימה לחוקים בפורום חתימות וצלמיות.
|
ראשי
צ'אט
מצב כלאיים
