Writing on Angular platform engineering, software architecture, team leadership, and the Linux desktop. Six reading paths cover Angular, leadership, systems, frontend quality, AI & data tools, and architecture — plus ordered series on the Series index. Browse topics by tag or scroll the chronological archive.
Security hole in Adobe Reader and Acrobat
Adobe is currently investigating a new security hole in Reader and Acrobat. Cybercriminals are currently spamming emails with prepared documents which lead to an infection of the computer with malware. The PDF document abuses a buffer overflow in a new place within the Adobe programs. There is a JavaScript object included in the PDF which checks the Reader Version – the exploit works with Adobe Reader starting at version 8. The code it injects downloads malware which it stores in the file “winver32.exe” in the Windows directory. This file drops 3 further files which Avira detects as BDS/Ientlcp.A, TR/Agent.faa and TR/Agent.HO. ...