"Never let school get in the way of learning."
-- Mark Twain
Adobe Acrobat Reader is software designed to view Portable Document Format (PDF) files. Adobe also distributes the Adobe Acrobat Plug-In to allow users to view PDF files inside of a web browser. Adobe Reader and Acrobat contain a buffer overflow vulnerability in the handling of JBIG2 streams.
BlackSecurity has released a working exploit for Acrobat and Reader that will bind a shellcode to port 5500. Additional write-up available.
C:\Documents and Settings\Administrator\Desktop> telnet localhost 5500
Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.
C:\Documents and Settings\Administrator\Desktop>
Download Now!