Researchers from security company FireEye have a vulnerability in Adobe Reader XI discovered that active attackers would be abused. With a manipulated pdf file can the sandbox protection of Reader be bypassed.
That exploit ensures that it is thanks to the leak in Adobe Reader XI two dll files on the computer of the victim to be placed, which means that the sandbox security of the program is bypassed. That is in the past happened before. The sandbox security is to avoid vulnerabilities in a program affect the operating system.
The exploit after a successful installation, a connection with a remote server. What happens next, and whether there are next data to be stolen, the security company not to. It is clear, however, that the latest version of Adobe Reader X is also affected, and users from the vulnerability, so can’t work around until a patch is available. FireEye recommends users not to ” unknown pdf-files to open. In addition, it is possible to use an alternative pdf reader to use. Adobe has still not substantively responded.