Last Updated: 2009-10-08 20:09:19 UTC
by Johannes Ullrich (Version: 1)
Adobe's PSIRT (Product Security Incident Response Team) published a new blog post today . The post reveals that a critical vulnerability, CVE-2009-3459, is now being exploited in the wild in targeted attacks. The vulnerability affects Adobe 9.1.3 on Windows, Unix and OS X. However, the exploits have been limited to Windows so far.
An update scheduled to be released on Oct 13th should fix the problem. Until then, Windows users are advised to enable DEP. Anti malware vendors have been informed by Adobe.