Security firm: Zero-day Adobe exploit in the wild

Trend Micro says that its spotted a zero-day Reader and Acrobat exploit on the Web, identifying the malware by name.

Security firm Trend Micro has found malicious files in the wild related to a zero-day exploit in Adobe Reader and Adobe Acrobat.

The file that Trend Micro spotted on the Web called TROJ_PIDIEF.WM includes two "downloaders" called TROJ_DLOADR.WM and TROJ_CHIFRAX.BU. According to Adobe Systems, which first mentioned the exploit Wednesday , the malicious files would allow an attacker to "take control of the affected system." The company said that it could also "cause a crash."

Trend Micro said that the site where it found the exploit was registered in Hong Kong, while the servers that host the page are in Germany and the United States. It said that "some effort was placed into hiding the actual persons responsible for this attack."

The exploit affects Adobe's Acrobat and Reader running on both Windows and Mac OS X. Adobe didn't provide a time frame for when it will release a patch to fix the issue.

About the author

Don Reisinger is a technology columnist who has covered everything from HDTVs to computers to Flowbee Haircut Systems. Besides his work with CNET, Don's work has been featured in a variety of other publications including PC World and a host of Ziff-Davis publications.


Discuss Security firm: Zero-day Adobe exploit in...

Conversation powered by Livefyre

Show Comments Hide Comments
Latest Articles from CNET
The gates are open -- the Edyn Garden Sensor hits online retailers