You are here: Home > Computer and Internet > Adobe Exploit Puts Backdoor on Computers

Adobe Exploit Puts Backdoor on Computers

Posted in Computer and Internet | October 13th, 2009

New Zero-Day Exploit targeting Adobe Reader and Adobe Acrobat 9.1.3 and earlier of Adobe Systems, is a backdoor on the computer using JavaScript, researchers at Trend Micro warned Friday.

Trend Micro identified as a Trojan horse “Troj_Pidief.Uo” in a blog entry to use synchronized. It comes as a PDF file with JavaScript-based malware, “Js_Agent.Dt”, and then falls as a backdoor Bkdr_Protux.Bd.

The exploit affects Microsoft Windows 98, ME, NT, 2000, XP and Server 2003, according to Trend Micro.

The blog entry provides technical details on the operation of malware, including activity of shell code, the piece of code that provides the payload. The JavaScript code is used to execute arbitrary code in a technique called “cluster known to carry syringes.”

“According to our results, the shell-code (ie sprayed Heap) jumped to a different shell code in the PDF file before you extract and run the back door, then Trend Micro. The backdoor is also integrated in the PDF and not the usual file downloaded from the Internet. “

Variants of Protux backdoor generally offer an attacker unrestricted access to the user level with a compromised computer and use vulnerabilities in Microsoft Office, Trend Micro.

Adobe announced Thursday that it is an update to fix the hole on Tuesday released the same day that the Microsoft patches Tuesday.

  • Digg
  • Del.icio.us
  • StumbleUpon
  • Reddit
  • Twitter
  • RSS

Leave a Reply