ie8 fix
madison
Home / News & Blogs

Report: Adobe Reader, IE most targeted

Elinor Mills CNET News | July 14, 2010 5:02 AM PDT

Summary

The most exploited vulnerabilities tend to be Adobe Reader and Internet Explorer, but a rising target for exploits is Java.

Topics

Adobe Systems Inc., Vulnerability, Adobe Acrobat Reader, Microsoft Internet Explorer, Exploit, Web Browsers, Security, Internet

The most exploited vulnerabilities tend to be Adobe Reader and Internet Explorer, but a rising target for exploits is Java, according to a report to be released on Wednesday by M86 Security Labs.

Of the 15 most exploited vulnerabilities observed by M86 Security Labs during the first half of this year, four involved Adobe Reader and five in Internet Explorer, the lab wrote in its latest security report for January through June 2010.

Also on the Top 15 list were vulnerabilities affecting Microsoft Access Snapshot Viewer, Real Player, Microsoft DirectShow, SSreader, and AOL SuperBuddy. Most of the exploits observed had been first reported more than a year earlier and were addressed by vendors, "highlighting the need to keep software updated with the latest versions and patches," the report said.

For more on this story, read Report: Adobe Reader, IE top vulnerability list on CNET News.

1
Comments
Add Your Opinion

Join the conversation!

0 Votes
+ -
RE: Report: Adobe Reader, IE most targeted
Thad McIlroy, The Future of Publishing 14th Jul 2010
The same organization's report for last half of 2009 damned PDF:

"From an attacker?s perspective, the advantages are quite simple: PDF files are not browser dependent, and Adobe Reader and Acrobat are immensely popular products with highly visibility in the marketplace. Finally, the other boon for attackers is the fact that PDF?s offer the ability to include dynamic content within a file.

Considering these advantages, PDF exploits are frequently used in attack toolkits, along with flash files and more recently, java (jar) exploits. In some cases, a set of PDF exploits is the only mode of attack needed by a cyber criminal to attack via a Web page.

Ultimately, PDF attacks tend to be very effective, with some achieving as high as 50% success rate."

The latest report reveals that "Java is an area where the number of attacks is increasing" including "one such example we saw attempted to exploit Adobe Acrobat
and Java."

Distressing.

Join the conversation!

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

ie8 fix