Filed under: Security, Office, Adobe
Adobe Acrobat bug more dangerous than originally thought
Because of the way Adobe integrates into Windows explorer - to provide metadata information about PDF files - there is a chance that your system could become infected without ever opening a single file. Since the bug's code can be placed within a file's metadata, any action that calls that data could set things in motion. That includes something as simple as hovering your mouse over the file icon, according to Obsessable's Stephen Schenck.
In the original post, I suggested using an alternative application to read files, but that won't fully address the vulnerability. To be completely safe, you'll have to remove Adobe Reader (and presumably, Acrobat as well) from your system for the time being and reinstall it once Adobe has developed a patch.
[ via Obsessable ]
I don't know if this is a labor of love or merely the brainchild of four very gifted games designers, but Level Up is a really weird mash-up of gaming elements that you have probably never seen in a Flash game before.
Let's start with the premise itself: Groundhog Day meets Memento. The game experience revolves around 'days': you explore the world and the clock slowly ticks towards the evening. You bounce around picking up gems and talking to the denizens of 'Level Upland'. Eventually you feel tired and head back to ...
Reader Comments (Page 1 of 1)
Sam said 6:53PM on 3-05-2009
does it also make your acrobat change to Spanish?
Reply
Duncan said 7:29PM on 3-05-2009
Use Foxit reader instead, its faster and generally less of a resource hog anyway.
Reply
Hamman Samuel said 3:51AM on 3-06-2009
Totally agree, Foxit is my choice from all the PDF viewers out there.
The Gnome said 7:40PM on 3-05-2009
Go Foxit Reader
Reply
gt-racer said 8:07PM on 3-05-2009
does the uninstall include air and flash player?
Reply
von Blogger said 9:43PM on 3-05-2009
Maybe this is a dumb question, but would Norton 360 (or similar antivirus software) help with this Acrobat problem? Thanks for feedback.
Reply
LMM said 1:33AM on 3-06-2009
My educated guess is no. The Acrobat bug is an exploit, meaning it triggers a problem within Acrobat's coding that creates a whole separate problem. Typically an exploit is used to cause the program being exploited to either harm the machine by deleting files, tell the machine to read some info and send it somewhere (like passwords), or tell the machine to download and execute a virus. So in other words, any sort of virus would happen AFTER the bug was exploited, not before.
Long story short: the answer to your question is no. But then again I'm not an expert and I didn't read the security brief on this particular bug.
LMM said 1:38AM on 3-06-2009
Sorry to double-post, but I read the security briefing on this bug real quick out of curiosity. It's pretty vague, but it says Adobe's working with anti-virus companies to get this sorted out. In other words, the anti-virus people are either working on or have already distributed updated virus definitions to avoid this, but since that's not explicitly stated anywhere, they also may not have been able to do anything yet.
Long story short: There is no definite answer to your question. Disable Adobe Acrobat and Reader until they put out a bug fix just to be safe.
Brian said 11:15PM on 3-05-2009
The developers of Foxit have confirmed that this doesn't affect their software. Good thing I use it! :)
Reply
JJ said 3:44AM on 3-06-2009
I use Foxit Reader but for PDF creation and editing, I use Adobe Acrobat.
With this exploit, I don't know any other good PDF editor/creator I can use in place of Acrobat.
Reply
Edgardo said 8:45AM on 3-06-2009
Does anyone know if Nitro PDF Pro is affected?
Reply
rush0 said 8:50AM on 3-06-2009
How is meta data secured in other programs?
Reply
palmerc said 10:52AM on 3-06-2009
Use Apple Preview and you will be fine.
Cheers
The Captain
Reply
Lee Mathews said 10:23AM on 3-06-2009
As stated in the post, you have to get Acrobat completely off your system.
It's not enough to leave Acrobat installed and use a different app to open files since the bug can be triggered without opening a file. Shell integration, FTL.
Not sure if this part of the bug affects Mac, but it's best to play it safe.
CaptainCol said 11:01AM on 3-06-2009
Sorry Lee read your own posts and the subsequent links and you will see this is fine.
Reply
Racetrack_Owner said 4:24PM on 3-06-2009
To be fair, you'd first have to actually download an infected PDF to your local machine, and it doesn't appear that this crucial step has been automated in any fashion. It's bad (which I'd have said about Acrobat anyway) but its viability as a "useful" exploit is questionable at best. Basically... if you can get somebody to download a malicious attachment or file, there are probably easier ways to infect their machine than this.
Reply