The US-CERT Current Activity web page is a regularly updated summary of the most frequent, high-impact types of security incidents currently being reported to the US-CERT.
Adobe has released a blog entry addressing a vulnerability in Acrobat and Reader. This vulnerability exists due to the way in which Adobe Acrobat and Adobe Reader handle launch actions embedded in PDFs. When users open a PDF that contains a launch action, they are presented with a dialog box warning the user that a file and its viewer application are set to be launched by the PDF file. The dialog box asks users if they want to continue opening the file and displays the name of the file to be opened. An attacker may be able to manipulate the content in the file name section of the dialog box in an attempt to convince users to open the file. By default, the dialog is set to select the option to continue opening the file. This default configuration and the option to disable the warning message for future launch actions makes it very easy for users to bypass this security mechanism. Opening a PDF containing malicious launch actions may result in arbitrary code execution.
The Foxit Corporation has released Foxit Reader 3.2.1.0401 to address a critical vulnerability. Exploitation of this vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code.
US-CERT encourages users and administrators to review the Foxit notice regarding the release and upgrade to Foxit Reader 3.2.1.0401 to help mitigate the risks. Additional information regarding this vulnerability can be found in the Vulnerability Notes Database.
The Mozilla Foundation has released Firefox V3.6.3 to address a critical vulnerability. Exploitation of this vulnerability may allow an attacker to execute arbitrary code.
US-CERT encourages users and administrators to review Mozilla Foundation Security Advisory mfsa2010-25 and upgrade to Firefox V3.6.3.