Exploit.PDF-Dropper.Gen

 
Urgency:
High

Description
Inter Engineering in cooperation with F-Secure has been notified of an active spam run that tries to exploit a PDF vulnerability.

The emails look like this:

From: random addresses
To: random recipients
Subject: New Resume

Please review my CV, Thank You!

Attachment: resume.pdf

The PDF attachment exploit will try to inject to the target system trojan-downloader files.
F-Secure has published a detection signature that detects these PDF attachments as infected. It is included in the database version 2010-06-08_03.

 

More information on the infection can be found at:
http://www.f-secure.com/weblog/archives/00001963.html
Prevention steps

It is strongly recommended by Inter Engineering to perform the following actions in order to avoid get infected:
- Make sure that all your F-Secure Anti-virus installations are updated with the latest updates.
- If you are using Email Filtering solutions (like
F-Secure Messaging Security Gateway
F-Secure Antivirus for Microsoft Exchange
Clearswift Secure Email Gateway
Clearswift Mimesweeper for SMTP

You can enable detection of the particular subject, and set these messages to quarantine.
For more technical information contact Support Department via e-mail This e-mail address is being protected from spambots. You need JavaScript enabled to view it or via phone +30.2410.670030.

To contact us: 
Tel. +30.2410.670030
Fax.+30.2410.670006
Email: This e-mail address is being protected from spambots. You need JavaScript enabled to view it
www.inter-datasecurity.com