Overclock.net › Forums › Industry News › Software News › [bitTech] Acrobat suffers security flaw
New Posts  All Forums:Forum Nav:

[bitTech] Acrobat suffers security flaw

post #1 of 5
Thread Starter 
Quote:
If you've been prompted to install an Adobe Reader update in the last couple of days, I'd go ahead: it's to fix a rather nasty security bug.

A vulnerability report was made public yesterday concerning Adobe's popular Reader product – specifically, the implementation of Javascript with Acrobat-created documents. The issue is present in all versions of Adobe Reader prior to 8.1.2 Security Update 1 as well as the commercial Acrobat packages used to create PDF files. The bug, discovered by the Information Security team at John Hopkins University's Applied Physics Laboratory, can result in a program crash with the potential to execute arbitrary code. It's a bad one, in other words.

Thankfully, the APL team followed reasonable reporting practices and reported the issue to Adobe; with forewarning about the issue before it becomes common knowledge the company was able to work on a advisory of their own, as well as the all-important patch to render the bug harmless.

Coming less than a month after a similar scripting language flaw was revealed in the Flash Player also produced by Adobe, it's clear that the company is going to have to do a bit of work on its image in the computer security world.

If you don't want to wait for your copy of Adobe Reader to prompt you, links to download updates for all affected versions are available on the Adobe website.
Source
post #2 of 5
All of these posts on proof of concept exploits is getting annoying
It goes to eleven
(13 items)
 
  
CPUMotherboardGraphicsRAM
E6300 DS3 EVGA 8600GTS 2GB XMS2 DDR2-800 
Hard DriveOSMonitorKeyboard
1.294 TB Arch Linux/XP Samsung 226bw Eclipse II 
PowerCaseMouse
Corsair 520HX Lian-Li v1000B Plus G7 
  hide details  
Reply
It goes to eleven
(13 items)
 
  
CPUMotherboardGraphicsRAM
E6300 DS3 EVGA 8600GTS 2GB XMS2 DDR2-800 
Hard DriveOSMonitorKeyboard
1.294 TB Arch Linux/XP Samsung 226bw Eclipse II 
PowerCaseMouse
Corsair 520HX Lian-Li v1000B Plus G7 
  hide details  
Reply
post #3 of 5
talking about acrobat....Acrobat 9 is available today! I allready downloaded pro extended trial to play with it
Edited by neonlazer - 6/25/08 at 10:04am
post #4 of 5
Adobe products seem to be extremely vulnerable compared to most other things on the market. Is this due to their proliferation like Windows vs Mac or do they just write crappy code?
The New Guy
(16 items)
 
  
CPUMotherboardGraphicsRAM
Q6600 G0@3.0GHz GA-P35-DS3L EVGA 8800GT Superclocked 4GB Corsair XMS2 DDR2 800 
Hard DriveHard DriveOptical DriveOS
Seagate 320GB 7200RPM Western Digital Caviar Black Lite-on DVD burner Windows 7 Professional x64 
MonitorKeyboardPowerCase
Samsung 225BW Filco Majestouch Ninja (full keyboard w/browns) Cooler Master Xtreme 650 Antec 900 
MouseAudioAudio
Logitech MX518 Denon AHD-2000 Sennheiser HD595 
  hide details  
Reply
The New Guy
(16 items)
 
  
CPUMotherboardGraphicsRAM
Q6600 G0@3.0GHz GA-P35-DS3L EVGA 8800GT Superclocked 4GB Corsair XMS2 DDR2 800 
Hard DriveHard DriveOptical DriveOS
Seagate 320GB 7200RPM Western Digital Caviar Black Lite-on DVD burner Windows 7 Professional x64 
MonitorKeyboardPowerCase
Samsung 225BW Filco Majestouch Ninja (full keyboard w/browns) Cooler Master Xtreme 650 Antec 900 
MouseAudioAudio
Logitech MX518 Denon AHD-2000 Sennheiser HD595 
  hide details  
Reply
post #5 of 5
Quote:
Originally Posted by Desidero View Post
Adobe products seem to be extremely vulnerable compared to most other things on the market. Is this due to their proliferation like Windows vs Mac or do they just write crappy code?
Well one thing i thought of...ah nvm..i was thinking flash players flaw might have been something of Macromedia's doing before adobe bought it lol...acrobat was made by adobe im pretty sure so no excuse there
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Software News
Overclock.net › Forums › Industry News › Software News › [bitTech] Acrobat suffers security flaw