Several security companies today warned of a major malware campaign that tries to get users to open PDF's that exploit an unpatched design flaw in the PDF file format.

Users who open the attack PDFs are infected with a variant of a Windows worm known as "Auraax" or "Emold," researchers said.

A PDF attachment purportedly contains instructions on how to reset e-mail settings. "SMTP and POP3 servers for ... mailbox are changed. Please carefully read the attached instructions before updating settings," the message states.

In reality, the PDFs contain embedded malware and use the format's /Launch function to execute that malware on Windows PCs running the newest versions of Adobe Systems Inc.'s Acrobat application or its free Adobe Reader, as well as other PDF viewers, such as Foxit Reader.



More info here: Major malware campaign abuses unfixed PDF flaw - Computerworl

Re: Adobe PDF Unpatched Exploit Used By Malwa

Update today: Update: Attackers exploit critical bug in Adobe's Flash, Reader - Computerworld

Re: Adobe PDF Unpatched Exploit Used By Malwa

More info here: Malware Watch: Adobe zero day attack, malicious FIFA-themed spam, exploit serving Virus Alerts | ZDNet

In light of this info Adobe updated to 10.1 today. If you don't have it yet I strongly recommend updating

Re: Adobe PDF Unpatched Exploit Used By Malwa

Shows how "on the ball" I am haha. I received the popup this morning when booting my machine.

Manual updates available here:
Adobe - Adobe Flash Player
http://get.adobe.com/reader/?promoid=BUIGO

Re: Adobe PDF Unpatched Exploit Used By Malwa

Foxit is a fabulous alternative to Adobe

Foxit Software - Foxit Reader 3.0 for Windows

Re: Adobe PDF Unpatched Exploit Used By Malwa

Nice one Kenny. Thanks

Re: Adobe PDF Unpatched Exploit Used By Malwa

More updates:
Adobe to Patch Critical Reader, Acrobat Flaw | threatpost