Large-scale attacks exploit unpatched PDF bug

Large-scale attacks exploit unpatched PDF bug - Network World: "The SANS Institute's Internet Storm Center (ISC) reported Monday that they'd received samples of a new rigged PDF document that hijacked PCs using a bug Adobe acknowledged Dec. 14 . Later last month, Adobe said it would not patch the bug until Jan. 12. In his write-up of the sample, ISC analyst Bojan Zdrnja called the attack PDF 'sophisticated' and its use of egg-hunt shellcode 'sneaky.'"