Posted on 03/10/2009 4:12:32 PM PDT by Cindy
Note: The following text is a quote:
New Attack Vectors for Adobe JBIG2 Vulnerability
added March 10, 2009 at 04:52 pm US-CERT is aware of public reports of two new attack vectors for a vulnerability affecting Adobe Reader and Acrobat. This vulnerability is due to a buffer overflow condition that exists in the way Adobe Acrobat Reader handles JBIG2 Streams.
When Adobe Reader is installed on a system, it adds an IFilter that allows applications such as the Windows Indexing Service to index PDF files. If the Windows Indexing Service processes a malicious PDF file stored on the system, the vulnerability can be exploited. Exploitation using this technique can require little to no user interaction.
In addition to adding an IFilter, the Adobe Acrobat and Reader installation process adds a Windows Explorer Shell Extension. If Windows Explorer displays a folder that contains a malicious PDF file, the vulnerability can be exploited. Exploitation using this technique also requires little to no user interaction.
US-CERT encourages users and administrators to incorporate the following workarounds to help mitigate the risks:
Locate and unregister the Adobe Reader IFilter using: regsvr32 /u AcroRdIF.dll Locate and unregister the Adobe Acrobat IFilter using: regsvr32 /u AcroIF.dll
Disable Adobe Acrobat Windows Shell integration to help mitigate the risk. This can be disabled by executing the following command: regsvr32 /u "%CommonProgramFiles%\Adobe\Acrobat\ActiveX\pdfshell.dll" Additional information about the Adobe Reader and Acrobat JBIG2 vulnerability can be found in the Vulnerability Notes Database.
US-CERT will provide additional information as it becomes available.
...
While unregistering dll’s is relatively easy for advanced users, Adobe needs to release a patch for this fast. There are millions of users and businesses that are completely unaware of this vulnerability in Acrobat and Acrobat reader.
I agree.
This was news to me.
Νέα Επίθεση Διανύσματα για Adobe JBIG2 Vulnerability προστίθενται!
http://en.wikipedia.org/wiki/Foxit
It's got half the RAM footprint of Adobe, which I despise.
I'm not sure if Foxit has the same issue as Adobe. I'll be checking it out.
Try Foxit for a great PDF reader.
What's up with the Adobe flash problems?
You got that right-Acrobat is a tremendous resources hog but that not it's only problem. I have the multi-language versiom (English-French-German)and when the installer runs it drops nearly 2GB of files on your hard drive-many of which are superflous to the actual Acrobat program. If I didn't have hundreds of gigs to spare I would have chucked it long ago. Then there's the problem that everytime I open a large pdf file it dumps hundreds of more files in my temp folder-many of which it fails to delete when the program shuts down.
Just checked my system for the Adobe dlls, but they weren't there. Life is good!
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.