ie8 fix
madison
Home / News & Blogs

Microsoft, Adobe block zero-day attacks

Edward Moyer CNET News | September 13, 2010 4:40 AM PDT

Summary

Microsoft and Adobe Systems have announced that a recently released Microsoft toolkit can be used to block zero-day attacks targeting a security flaw in Adobe's Acrobat and Reader programs.

Topics

Adobe Systems Inc., Security Flaw, Microsoft Corp., Zero-day Bug, Security, Viruses And Worms

Microsoft and Adobe Systems have announced that a recently released Microsoft toolkit can be used to block zero-day attacks targeting a security flaw in Adobe's Acrobat and Reader programs.

In an advisory published on Friday, Microsoft detailed how its Enhanced Mitigation Experience Toolkit 2.0 could be used to short-circuit the threat. Adobe, which has not yet released a patch, updated its original advisory to reflect the new information.

Adobe considers the flaw to be "critical" — it could let an attacker take control of any of the millions of computers running what is far and away the most popular PDF viewing system.

For more on this story, read Microsoft, Adobe: PDF security flaw treatable on CNET News.

5
Comments
Add Your Opinion

Join the conversation!

Just In

RE: Microsoft, Adobe block zero-day attacks
nickdangerthirdi@... 13th Sep 2010
@m_a_simons@... I wish, at this point M$ looks like gods next to the crap adobe has been spewing the last few years....
View in thread
0 Votes
+ -
RE: Microsoft, Adobe block zero-day attacks
RocketEater 13th Sep 2010
Who else but Microsoft could have software named "Enhanced Mitigation Experience Toolkit"? Let us enhance your mitigation experience today!
0 Votes
+ -
RE: Microsoft, Adobe block zero-day attacks
betelgeuse68 13th Sep 2010
@RocketEater

Your snide remark showcases your ignorance. What Microsoft is doing is not new, this is just one thing it does:

http://en.wikipedia.org/wiki/Buffer_overflow_protection

Microsoft is simply making it much harder for rogue code to be injected into an application and have it be executed. At best, using EMET prevents the local reading of files, e.g., browser cookies and any other file you can normally read/write to. Yeah they could delete all your files or something else that could be labeled "mischievous" but people leveraging this type of malware are usually more interested in stealing your money than plastering a lewd picture on your desktop.

At worst, your system won't get botted/backdoored.

-M
0 Votes
+ -
RE: Microsoft, Adobe block zero-day attacks
RocketEater 13th Sep 2010
@betelgeuse68 I was deriding the name, not the toolkit which I agree is an excellent idea. But surely Microsoft must have a committee of ex-IBMers and former government bureaucrats who decide these names.
0 Votes
+ -
RE: Microsoft, Adobe block zero-day attacks
m_a_simons@... 13th Sep 2010
So does this mean Adobe admits that they can't handle the multiple breaks into their software, and are relying on Microsoft to fix it ?
0 Votes
+ -
RE: Microsoft, Adobe block zero-day attacks
nickdangerthirdi@... 13th Sep 2010
@m_a_simons@... I wish, at this point M$ looks like gods next to the crap adobe has been spewing the last few years....

Join the conversation!

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

ie8 fix