Zero day hole in Adobe Reader and Acrobat
Adobe has warned of a critical hole in Adobe Reader and Acrobat for all operating systems. The hole can be exploited to infect computers with malware. Although the flaw is already actively being exploited by attackers, Adobe reportedly does not plan to release a patch, or an update, to close the hole in the series 9 versions, until the 11th of March. Updates for version 7 and version 8 are to follow shortly thereafter.
Several anti-virus software manufacturers already detect the zero day exploit as Trojan.Pidief and block it. While Symantec appears to have included a signature, protecting users from this exploit, since the 12th of February, it has only assigned a low rating to this threat. At the moment, the exploit is reportedly only used for targeted attacks. However, experience shows that this tends to change rather quickly and malformed PDF documents can be expected to appear on web pages soon.