0-day exploit in Adobe Reader
С обходом песочницы. Эксплойты замечены в интернетах.
http://www.infoworld.com/d/security/adobe-confirms-zero-day-exploit-bypasses-adobe-reader-sandbox-212902
Информация от производителя: http://www.adobe.com/support/security/advisories/apsa13-02.html
Уязвимые версии:
Adobe Reader XI (11.0.01 and earlier) for Windows and Macintosh
Adobe Reader X (10.1.5 and earlier) for Windows and Macintosh
Adobe Reader 9.5.3 and earlier 9.x versions for Windows, Macintosh and Linux
Adobe Acrobat XI (11.0.01 and earlier) for Windows and Macintosh
Adobe Acrobat X (10.1.5 and earlier) for Windows and Macintosh
Adobe Acrobat 9.5.3 and earlier 9.x versions for Windows and Macintosh
CVE-2013-0640, CVE-2013-0641
http://www.infoworld.com/d/security/adobe-confirms-zero-day-exploit-bypasses-adobe-reader-sandbox-212902
Информация от производителя: http://www.adobe.com/support/security/advisories/apsa13-02.html
Уязвимые версии:
Adobe Reader XI (11.0.01 and earlier) for Windows and Macintosh
Adobe Reader X (10.1.5 and earlier) for Windows and Macintosh
Adobe Reader 9.5.3 and earlier 9.x versions for Windows, Macintosh and Linux
Adobe Acrobat XI (11.0.01 and earlier) for Windows and Macintosh
Adobe Acrobat X (10.1.5 and earlier) for Windows and Macintosh
Adobe Acrobat 9.5.3 and earlier 9.x versions for Windows and Macintosh
CVE-2013-0640, CVE-2013-0641