Adobe has had an interesting week; they have had to patch the same flaw twice in the same week. This is due to a vulnerability in Reader, a hole that they thought they patched earlier this month. The flaw was first discovered in January, by security researcher Alex Infurh. He found that a malicious PDF flaw was being used to trigger a SMB call-back revealing an NTLMv2 hash.
The hole was patched, but a day after the hole was filled up, the same researcher found that the same patch could be bypassed. On the 21st of this month, Adobe had to go and fix the same problem.
It just goes to show you that even when a wall is put up to shore up a hole, there is still a chance that the same patch can be bypassed, one way or another,
Original article can be found here.
That was the news folks, have a good week, and stay safe out there.
---Mad-Architect
01001001 00100000 01000001 01001101 00100000 01011010 01001111 01000100 01001001 01000001 01000011