The recent zero-day vulnerability CVE-2018-4990 in Adobe Reader enables attackers to perform a Remote Code Execution on targeted machines. Adobe has released a security advisory APSB18-09 on May 14, 2018 to address this issue. According to Adobe, the in-wild attack is targeted and it impacts limited Windows users.
Seqrite detection
Seqrite has released the following detection for the vulnerability CVE-2018-4990.
- Exp.PDF.CVE-2018-4990
Seqrite Security Labs is actively looking for new in-wild exploits for this vulnerability and ensuring coverage for them.
To read this post in detail please visit –
https://blogs.quickheal.com/cve-2018-4990-adobe-reader-double-free-zero-day-vulnerability-alert/
References
https://helpx.adobe.com/security/products/acrobat/apsb18-09.html https://www.welivesecurity.com/2018/05/15/tale-two-zero-days/
