Adobe(NASDAQ:ADBE) bratgs outside yet anoTher patch 4 The vulnerability at Its Acrobat Reader #Digitalinformationworld_ComMarch 24, 2019
Adobe issues another patch for the continuing vulnerability found in its Acrobat Reader – just a week after it brought out the original fix.
Although Adobe managed to resolve the initial vulnerability issue , a researcher claimed to find a way to bypass the fix pushing the company to bring out another patch within a week.
According to Adobe, the first scheduled patch left a hole in their product that could result in sensitive data leakage.
The zero-day vulnerability allowed the hackers to steal victims hacked password values, known as the “ NTLM hashes ” in technical term.
With the vulnerability, a PDF document was automatically sent to a server message block (SMB) request to an attacker’s server as soon as the document was opened.
The SMB protocols enabled the application or user of the application to access files on a remote server.
The SMB requests had NTML hashes embedded in it allowing the hackers to easily compromise personal data of Adobe users.
The vulnerability was patched last week but researcher Infuhr found a way to bypass the patch and immediately reported its discovery to Adobe.
Related: Are hacking groups advancing in their conspiracies?
However, currently, there are no known exploits from vulnerability.