Old 05-01-2009, 01:01 AM #1
c0ldshadow's Avatar
Security Engineer
 
Join Date: Mar 2006
Posts: 2,786
Rep Power: 10
c0ldshadow has disabled reputation
c0ldshadow c0ldshadow is offline
Security Engineer
c0ldshadow's Avatar
 
Join Date: Mar 2006
Posts: 2,786
Rep Power: 10
c0ldshadow has disabled reputation
Default adobe acrobat reader continued vulnerabilities

dear lpf members, i work in the IT security field and just wanted to warn u all about another critical vulnerability in adobe acrobat reader

http://www.theregister.co.uk/2009/04...e_reader_flaw/

consider using another software or disabling javascript in reader

adobe has a long history of vulnerabilities and i doubt it will stop soon. attackers can exploit these vulnerabilities to install malware on your machine after viewing specially crafted malicious pdf file

just wanted to give u all a heads up

peace
-ave


c0ldshadow is offline   Reply With Quote


















Old 05-01-2009, 01:06 AM #2
HumanSymphony's Avatar
Half Afro / Half Man
 
Join Date: May 2008
Location: Washington
Posts: 2,031
Rep Power: 5118
HumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond repute
Send a message via AIM to HumanSymphony Send a message via MSN to HumanSymphony Send a message via Yahoo to HumanSymphony
HumanSymphony HumanSymphony is offline
Half Afro / Half Man
HumanSymphony's Avatar
 
Join Date: May 2008
Location: Washington
Posts: 2,031
Rep Power: 5118
HumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond reputeHumanSymphony has a reputation beyond repute
Send a message via AIM to HumanSymphony Send a message via MSN to HumanSymphony Send a message via Yahoo to HumanSymphony
Default Re: adobe acrobat reader continued vulnerabilities

Adobe reader in itself is horrible. I use Foxit and i recommend it to everyone :P
__________________
Quote:
Originally Posted by yobresal View Post
I didn't even know there was a game.
Quote:
Originally Posted by Gryphon View Post
LOL, i didn't know there was a movie
Quote:
Originally Posted by HumanSymphony View Post
DOUBLE LOL!
Laser Rap (Part I)
Laser Rap (Part II)
Laser Rap (Part III)
HumanSymphony is offline   Reply With Quote
Old 05-01-2009, 02:20 AM #3
pseudolobster's Avatar
Class 3R Laser
 
Join Date: Jan 2008
Location: BC, Canada
Posts: 1,734
Rep Power: 487
pseudolobster has a reputation beyond reputepseudolobster has a reputation beyond reputepseudolobster has a reputation beyond reputepseudolobster has a reputation beyond reputepseudolobster has a reputation beyond reputepseudolobster has a reputation beyond reputepseudolobster has a reputation beyond reputepseudolobster has a reputation beyond reputepseudolobster has a reputation beyond reputepseudolobster has a reputation beyond reputepseudolobster has a reputation beyond repute
pseudolobster pseudolobster is offline
Class 3R Laser
pseudolobster's Avatar
 
Join Date: Jan 2008
Location: BC, Canada
Posts: 1,734
Rep Power: 487
pseudolobster has a reputation beyond reputepseudolobster has a reputation beyond reputepseudolobster has a reputation beyond reputepseudolobster has a reputation beyond reputepseudolobster has a reputation beyond reputepseudolobster has a reputation beyond reputepseudolobster has a reputation beyond reputepseudolobster has a reputation beyond reputepseudolobster has a reputation beyond reputepseudolobster has a reputation beyond reputepseudolobster has a reputation beyond repute
Default Re: adobe acrobat reader continued vulnerabilities

I'm using acrobat 5.1, I doubt I'm affected.

Acrobat 5.1 is super lightweight, only a couple megs (the latest version installs to at least 300mb!), and despite it complaining all the time that it's incompatible with the PDF I'm viewing, I've never seen a single PDF it can't render perfectly fine.

I've heard good things about foxit, though I've never had time to play with it.
__________________
Custom Text
pseudolobster is offline   Reply With Quote
Old 05-01-2009, 05:01 AM #4
rkcstr's Avatar
Class 3R Laser
 
Join Date: Dec 2007
Posts: 1,368
Rep Power: 4403
rkcstr has a reputation beyond reputerkcstr has a reputation beyond reputerkcstr has a reputation beyond reputerkcstr has a reputation beyond reputerkcstr has a reputation beyond reputerkcstr has a reputation beyond reputerkcstr has a reputation beyond reputerkcstr has a reputation beyond reputerkcstr has a reputation beyond reputerkcstr has a reputation beyond reputerkcstr has a reputation beyond repute
rkcstr rkcstr is offline
Class 3R Laser
rkcstr's Avatar
 
Join Date: Dec 2007
Posts: 1,368
Rep Power: 4403
rkcstr has a reputation beyond reputerkcstr has a reputation beyond reputerkcstr has a reputation beyond reputerkcstr has a reputation beyond reputerkcstr has a reputation beyond reputerkcstr has a reputation beyond reputerkcstr has a reputation beyond reputerkcstr has a reputation beyond reputerkcstr has a reputation beyond reputerkcstr has a reputation beyond reputerkcstr has a reputation beyond repute
Default Re: adobe acrobat reader continued vulnerabilities

Hey, thanks for the warning Avery!

I personally hate Acrobat... the damn thing always sucks up useless memory, causes errors or crashes every other day and now viruses!
__________________
Laser drivers and Test Loads - rkcstr.com

Enter discount code "LPF" during checkout to save 10% off of the regular prices!
rkcstr is offline   Reply With Quote
Old 05-01-2009, 09:14 AM #5
Member
 
Join Date: Apr 2009
Posts: 40
Rep Power: 0
weetsie is on a distinguished road
weetsie weetsie is offline
Member
 
Join Date: Apr 2009
Posts: 40
Rep Power: 0
weetsie is on a distinguished road
Default Re: adobe acrobat reader continued vulnerabilities

acrobat allows scripts within a pdf? :-?

no wonder its got a bad name.
weetsie is offline   Reply With Quote
Old 05-01-2009, 12:41 PM #6
Class 2 Laser
 
Join Date: Feb 2009
Posts: 263
Rep Power: 13
seoguy is a jewel in the roughseoguy is a jewel in the roughseoguy is a jewel in the rough
seoguy seoguy is offline
Class 2 Laser
 
Join Date: Feb 2009
Posts: 263
Rep Power: 13
seoguy is a jewel in the roughseoguy is a jewel in the roughseoguy is a jewel in the rough
Default Re: adobe acrobat reader continued vulnerabilities

Thanks for the heads-up, c0ldshadow!

I had a bad run-in with an infected Acrobat file last year. :'(

The scariest part was, when I pointed all my AV-type programs right at the file and told them to scan it, none of them delected that it was infected!

Quote:
I'm using acrobat 5.1, I doubt I'm affected.
pseudolobster, I wouldn't be so sure! If I recall correctly, some of the Acrobat vulnerabilities discovered last year extended way back to many older versions as well!

Even worse, Adobe got hit with multiple issues in a row, so they only bothered to fix the latest versions!

So, if you're running an older PC / OS that is not compatible with the latest (patched) versions of Acrobat Reader, you were basically SOL! :P

NOTE - that was the situation last year. As I understand it, Adobe doesn't even have a patch yet to fix these latest vulnerabilities!

seoguy is offline   Reply With Quote
Reply





Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

























Privacy Policy | Advertising Disclaimer | Terms of Use


 


All times are GMT. The time now is 02:07 AM.


Powered by: vBulletin
Copyright ©2000 - 2018, Jelsoft Enterprises Ltd.
Search Engine Friendly URLs by vBSEO
Privacy Policy | Advertising Disclaimer | Terms of Use
Copyright (C) 2017 Laser Pointer Forums, LLC