Adobe is releasing a new patch next week, but don’t get lulled into a false sense of security.
Didier Stevens, an IT security consultant has demonstrated how just VIEWING a folder containing compromised PDF files using Microsoft’s Windows Explorer might be enough to launch an exploit.
The exploit can be triggered by hovering over the PDF document, single clicking on it, or viewing the thumbnail.
Adobe acknowledged this vulnerability back February 19 and has admitted that it’s a major issue. They will be releasing an update this week for Reader 9 and Acrobat 9.
However, Adobe’s recommendation disable JavaScript is al but useless when it comes to this new hazard. You might want to take John Paczkowski’s advice: AdobeAcrobatUninstall.exe.
A few good ideas: Foxit for Windows users, Preview for Mac users, and Xpdf for Linux users.
Here is a video explaining the vulnerability…
Related articles by Zemanta
- Adobe Acrobat bug more dangerous than originally thought (downloadsquad.com)
- Zero-day Adobe PDF peril goes click free (theregister.co.uk)
- Adobe flaw heightens risk of encountering malicious PDFs (infoworld.com)
- Don’t miss the Acrobat 9 Life Sciences eSeminar series! (blogs.adobe.com)
Incoming search terms:
Get Blippitt via RSS feed, Facebook, Twitter, Google+,
and be sure to get our Daily Email Broadcast.
