As hackers continue to find clever new ways to wreak havoc on the Internet, Adobe is warning of a vulnerability in its popular Acrobat and Reader PDF programs.
Thanks to a demonstration by a security researcher, Adobe cautioned users in a blog post to only open files from trusted sources in PDF documents.
eSecurity planet has the details on Adobe’s PDF security scare.
Adobe is warning users of its Adobe Acrobat and Reader PDF applications about a new attack that could potentially expose users to risk.
The attack leverages Adobe (NASDAQ:ADBE) Acrobat and Reader’s ability to launch other content and applications.
Strictly speaking, the new attack vector isn’t a flaw in Adobe’s software but rather relies on social engineering to trick users into clicking on something they shouldn’t, which could lead to arbitrary code execution. The company credits security researcher Didier Stevens for demonstrating the attack, which the U.S. Department of Homeland Security’s U.S. Computer Emergency Readiness Team (US-CERT) also noted in an alert.