E-Mail:

Acrobat Reader Has Critical Flaw

Monday, September 24th, 2007
by Ken Harthun

I first heard of this in the latest issue (Vol. 7, #39 - Sep 25, 2007 - Issue #296) of WXP News.

“A security flaw has been discovered in Adobe’s Acrobat Reader, which is installed on a huge number of PCs. The vulnerability allows attackers to compromise Windows computers…. This problems affects Acrobat Reader versions 7, 8.0 and 8.1. An attacker can use the exploit to automatically run an executable program on your computer if you open a PDF file that’s been crafted to do so.”

My first reaction to this was to immediately recommend that everyone switch to Foxit Reader, but it’s also affected, though to a lesser degree: Foxit gives you a confirmation dialog before it runs the exploit. From ARS Technica:

“The flaw affects both Windows XP SP2 and Windows 2003; Windows Vista, OS X, and Linux users are unaffected…. Some work-alike PDF readers, such as the svelte Foxit Reader, are also affected but in a lesser manner: they display a confirmation dialog before the exploit is allowed to run.”

I haven’t used Acrobat Reader on any of my machines since version 6.0–it just got too big. I prefer Foxit Reader/Open Office for reading and creating PDFs. Looks like the Foxit camp is still safe, just don’t allow the exploit to run.

What do you think?

Cheers!
The Geek

Have a question? It can be about anything from cooking to science, whatever you’re interested in: Click here to Ask the Geek! Kenny “The Geek” Harthun has been playing with geeky stuff since 1965. He’s a former research scientist and Microsoft Certified Systems Engineer at Connective Computing, Inc. and loves to learn about anything and everything.

TagJag Tags: , , , , ,
Tags
Categories

2 Comments

Scott Salberg

September 25th, 2007
at 3:04pm

I’m not the only one who dislikes Acrobat Reader. Takes forever to load.

What I’m REALLY hating right now is Flash. HATE it. I’m not quite sure HOW it does it, but my entire system slows down when it’s running.

I’ve gotten to the point where I rarely have it installed. I ran into a site yesterday that REQUIRED it to enter. So I re-installed it.

Funny thing: You now have to go to their site for an uninstaller. Un-***ng-believable.

Am I the ONLY one who hates Flash?

peteo

September 26th, 2007
at 3:19pm

You guys are not the only one who thinks AR takes too long to load. That’s why there’s a small program out there that disables many of AR’s startup “features”.

What Do You Think?

 

Want to Start a Blog Here for Free?

Are you an expert in one subject or another? If your goal is to help others and dispense your hard-earned information back to the community, get involved in our community site today! You can write about anything - no matter the topic. Exceptional candidates will be offered the chance to contribute to (and generate revenue from) the main Lockergnome site. Join us today!

Links, Security - Jul 26, 2008

How to Secure Your Computer - 14 Maxims

General - Nov 29, 2007

New Zonbu Laptop: Affordable, Green, Hassle-Free Computing

General, Windows - Sep 13, 2007

Microsoft Just Made it Easier to Get Hotfixes

General, Open Source, Security - Aug 13, 2007

How Good is Your Antivirus Program?

63 queries / 3.688 seconds.