Zero-Day Vulnerability Discovered in Adobe and Foxit PDF Readers
/ 1 min read
🕵️♂️ New zero-day vulnerability in PDF readers exposes NTLM data. Cybersecurity researchers at EXPMON have discovered a zero-day behavior in PDF files that could allow attackers to leak sensitive NTLM authentication data through Adobe Reader and Foxit Reader. The vulnerability arises from how these applications process specific PDF actions, potentially enabling the theft of NTLM credentials in private network environments. While Adobe downplayed the risk, stating the behavior is limited to intranet domains, Foxit promptly issued a patch to address the issue. EXPMON emphasized the importance of big data analytics in identifying such overlooked vulnerabilities, urging users to disable certain features in Adobe Reader and update to the latest version of Foxit Reader for protection.
