Blog | G5 Cyber Security

Adobe Reader media.newPlayer() Analysis (CVE-2009-4324)

Adobe released an advisory detailing an in the wild exploit for Adobe Acrobat that is currently circulating in a number of places. The bug is contained in the doc.media object and is triggered when sending a null argument to the newPlayer() method like so. The exploit is detected by both our Snort signatures and the ClamAV signatures (SIDs 16333 and 16334) Disabling javascript actually neuters the exploit this time, as this bug exists in the javascript module. Multiple people have this information and are using this to attack organizations.”]

Source: https://blog.talosintelligence.com/2009/12/adobe-reader-medianewplayer-analysis.html

Exit mobile version