Thursday, August 18, 2005

Zotob Worm


Adobe has discovered a buffer overflow that if successfully exploited could crash the application with an increased risk of arbitrary code execution. The vulnerability is in a core Adobe Acrobat and Adobe Reader application plug-in. If the malicious file is loaded, it could exploit the buffer overflow. An update is available to mitigate potential malicious activity. This vulnerability (identifier CVE-2005-2470) affects the following platforms: Windows, Mac OS, Linux and Solaris and the following releases: Adobe Reader 5.1, 6.0-6.0.3, 7.0-7.0.2 and Adobe Acrobat 5.0-5.0.5, 6.0-6.0.3.

We recommend upgrading to the most current version of Adobe Reader and Adobe Acrobat and installing the available updates from Adobe. More information is available for each product from Adobe at http://www.adobe.com/support/techdocs/321644.html.

Additionally I ran Windows update on all my machines, first installing the new version Microsoft Update, and then ensuring all priority updates were installed.


Posted by: Jethro | 9:34 AM |