SkyRecon Detects PDF Vulnerability

SkyRecon® Systems (, the premier provider of integrated, proactive endpoint security solutions, today announced that it has reported a vulnerability – CVE-2008-4814 – in the Adobe Acrobat PDF file format. The unpatched Adobe software contains an input validation issue in a JavaScript method that could potentially lead to unauthorized remote code execution – exploited simply by viewing the document online or through your standard email system.

Dover, MA, November 07, 2008 --( The vulnerability affects any operating system that allows the user to view or open a compromised PDF file. The collection of operating systems includes, but is not limited to, multiple versions of Microsoft Windows, Unix, and Linux. If exploited, the vulnerability could allow for unauthorized code execution, such as a Trojan, keylogger, password stealer, or other form of malware.

More information regarding the vulnerability can be found at CVE-2008-4814. Additional information regarding the patch from Adobe can be found at

“At SkyRecon Systems, our research team aims to understand how a system is utilized by users, applications, and connected devices, allowing us to provide organizations with an endpoint security solution that enables secure business transactions as opposed to productivity-hindering controls,” said Thomas Garnier, Senior Research Engineer at SkyRecon Systems Inc.

StormShield Security Suite provides real-time protection from both identified and zero-day attacks – including the PDF vulnerability – without the need for patches or signatures. The comprehensive, proactive protection is delivered through a multi-layered, light-weight single endpoint protection platform, providing integrated endpoint policy control and enforcement for: behavioral-based host-based intrusion prevention (HIPS), system firewall, anti-virus/anti-spyware, application control, device control, data encryption, wireless security, and network access control (NAC).

About SkyRecon Systems Inc.
Founded in 2003, SkyRecon Systems is a leading global provider of endpoint protection platforms. The company is a contributing member of the SecureIT Alliance, has received the prestigious Red Herring 100 Award, and has been named "Entrepreneurial Security Company of the Year” by Frost & Sullivan. StormShield has again received 4 stars in the SC Magazine Endpoint Security Group Test, has been nominated as a finalist for the SC Awards magazine in the US Best Mobile Device Security Solution category and the 2008 Awards in the Endpoint Security Product of the Year category, and was also recently selected as a top 10 vendor for the 2008 Computer Reseller News list of 25 Coolest Emerging Tech Vendors.

More information about SkyRecon can be obtained by visiting, attending an educational security webinar, or by calling (877) 239-3057.


Press Contact:
Sean Martin, CISSP
(949) 878-0592 | |

SkyRecon, the SkyRecon logo, StormShield, and TradeShield are registered trademarks of SkyRecon Systems Inc. All other product or service names are the property of their respective owners
Contact, Inc
Victor Cruz