Quantcast
Viewing all articles
Browse latest Browse all 4693

Acrobat/Reader NTLM Hash exploit not being fixed?

Noticed this - this morning:

 

NTLM Credentials Theft via PDF Files - Check Point Research

 

Slightly more shocking though was Adobe Security's response to this exploit:

 

"Thank you for checking in on this case.  Microsoft issued an optional security enhancement [0] late last year that provides customers with the ability to disable NTLM SSO authentication as a method for public resources.  With this mitigation available to customers, we are not planning to make changes in Acrobat.“"


Viewing all articles
Browse latest Browse all 4693

Trending Articles