Go Back   Hardware Canucks > SOFTWARE > O/S's, Drivers & General Software

    
Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old September 9, 2010, 11:38 AM
Hall Of Fame
 
Join Date: Apr 2008
Location: Saskatchewan
Posts: 1,122

My System Specs

Default Adobe Reader zero-day attack now with stolen certificate

Today Adobe put out an advisory for a previously unknown zero-day in its PDF Reader/Acrobat software. This vulnerability is actively being exploited in the wild.
Adobe Reader zero-day attack – now with stolen certificate - Securelist
Quote:
Security Advisory for Adobe Reader and Acrobat

Release date: September 8, 2010
Vulnerability identifier: APSA10-02
CVE number: CVE-2010-2883
Platform: All
Summary

A critical vulnerability exists in Adobe Reader 9.3.4 and earlier versions for Windows, Macintosh and UNIX, and Adobe Acrobat 9.3.4 and earlier versions for Windows and Macintosh. This vulnerability (CVE-2010-2883) could cause a crash and potentially allow an attacker to take control of the affected system. There are reports that this vulnerability is being actively exploited in the wild.
Adobe is in the process of evaluating the schedule for an update to resolve this vulnerability.
Affected software versions

Adobe Reader 9.3.4 and earlier versions for Windows, Macintosh and UNIX, and Adobe Acrobat 9.3.4 and earlier versions for Windows and Macintosh.
Severity rating

Adobe categorizes this as a critical issue.
Details

A critical vulnerability exists in Adobe Reader 9.3.4 and earlier versions for Windows, Macintosh and UNIX, and Adobe Acrobat 9.3.4 and earlier versions for Windows and Macintosh. This vulnerability (CVE-2010-2883) could cause a crash and potentially allow an attacker to take control of the affected system. Adobe is aware of public exploit code for this vulnerability.
Adobe is in the process of evaluating the schedule for an update to resolve this vulnerability.
Adobe actively shares information about this and other vulnerabilities with partners in the security community to enable them to quickly develop detection and quarantine methods to protect users until a patch is available. As always, Adobe recommends that users follow security best practices by keeping their anti-malware software and definitions up to date
another reason to use foxit reader.
__________________
http://valid.canardpc.com/show_oc.php?id=932179

"Be so good at what you do that you cant be ignored"

Reply With Quote
  #2 (permalink)  
Old September 9, 2010, 12:37 PM
enaberif's Avatar
Hall Of Fame
 
Join Date: Dec 2006
Location: Calgahree, AB
Posts: 10,604
Default

Why the hell do people STILL use acrobat?

Its a big piece of poo!

Foxit is far better and faster.
Reply With Quote
  #3 (permalink)  
Old September 9, 2010, 12:40 PM
MVP
 
Join Date: Mar 2010
Location: Ottawa
Posts: 447
Default

foxit has its issues too. pdf security through simplicity: Sumatra PDF viewer by Krzysztof Kowalczyk
Reply With Quote
  #4 (permalink)  
Old September 9, 2010, 02:25 PM
Top Prospect
 
Join Date: Apr 2010
Location: Vancouver
Posts: 242
Default

PDF specs allow files to be embedded, executables to be launched and of course javascript is enabled by default (Foxit does that too), why are people surprised when there are frequent security problems with it.

Their advisory is kinda useless too when no information on workarounds and mitigating factors are included, e.g., does disabling scripting help, or can it break out of IE's protected mode in Vista/W7.

The next version of Acrobat will run in protected mode but maybe they should also nuke and trim the specs too.
__________________
iK
Reply With Quote
  #5 (permalink)  
Old September 13, 2010, 01:42 PM
Top Prospect
 
Join Date: Apr 2010
Location: Vancouver
Posts: 242
Default

Workaround posted:

Use EMET 2.0 to block Adobe Reader and Acrobat 0-day exploit - Security Research & Defense - Site Home - TechNet Blogs
__________________
iK
Reply With Quote
  #6 (permalink)  
Old September 13, 2010, 07:42 PM
ipaine's Avatar
Hall Of Fame
F@H
 
Join Date: Apr 2008
Location: Edmonton, AB
Posts: 2,057

My System Specs

Default

Quote:
Originally Posted by enaberif View Post
Why the hell do people STILL use acrobat?

Its a big piece of poo!

Foxit is far better and faster.

While I mostly agree, I have run into pdf's that I can not open with foxit. Mind you these were editable forms but the fact is I couldn't open them with Foxit. It is because of the odd ones that only seem to be able to get opened with Adobe, that I have to stick with it for my machines at work.
__________________
"Nothing sucks more than that moment during an argument when you realize you're wrong."


Reply With Quote
  #7 (permalink)  
Old September 14, 2010, 07:20 AM
bojangles's Avatar
Hall Of Fame
F@H
 
Join Date: Jan 2008
Location: Oakville, ON
Posts: 2,683

My System Specs

Default

Quote:
Originally Posted by enaberif View Post
Why the hell do people STILL use acrobat?

Its a big piece of poo!

Foxit is far better and faster.
Maybe if internet browsers recommended a different PDF reader than Adobe, THEN maybe people would stop using it. I don't know many people that use Foxit, heck I still use Adobe because it integrates better. People just need to surf safely and they won't run into any problems.
Reply With Quote
  #8 (permalink)  
Old September 14, 2010, 04:02 PM
MacJunky's Avatar
Hall Of Fame
F@H
 
Join Date: May 2007
Location: Creston, BC
Posts: 1,718

My System Specs

Default

I use foxit, but I keep all integration with other things disabled. I hate when pdfs open in my browser; I would rather just download em and browse from there.
Reply With Quote
Reply


Thread Tools
Display Modes

Similar Threads
Thread Thread Starter Forum Replies Last Post
Update:My stolen computer and other items recovered aimndtel Off Topic 72 June 5, 2011 02:01 PM
Expired security certificate message ZZLEE Suggestions & Feedback 7 December 11, 2009 10:25 AM
F-Secure says stop using Adobe Acrobat Reader 3 of 7 O/S's, Drivers & General Software 7 July 27, 2009 01:34 PM
Security Certificate Error... rogers.yahoo.com? somecanadianguy Networking 16 July 26, 2009 12:53 AM
Stolen Wallet Mr. Cipher Off Topic 9 April 27, 2008 08:15 PM