Adobe PDFのZERO-Dayが出たとの事。

Proof-of-concept exploit code has been published for a new zero-day vulnerability haunting Adobe’s widely deployed PDF Reader software.

In a brief note posted to its PSIRT blog, Adobe confirmed it was investigating the issue, which affects Adobe Reader 9.1 and 8.1.4. “We are currently investigating, and will have an update once we get more information,” according to Adobe’s David Lenoe.

Blogs | ZDNet

Javascriptの関数の脆弱性みたい

Adobe Reader ‘getAnnots()’ Javascript Function Remote Code Execution Vulnerability

Blogs | ZDNet

関連URL

• Adobe Investigating New Vulnerabilities in Reader - Calendar Of Updates
• Adobe Reader JavaScript Function Vulnerability：US-CERT Current Activity