Adobe Systems, the makers of the popular Adobe Acrobat, is warning today of a security hole in both their Adobe Reader and Adobe Acrobat PDF viewer software. Adobe Reader is a widely distributed and used free software program for viewing PDF files.
According to the Adobe website, “The vulnerability is within the Adobe Reader control. If an XML script is embedded in JavaScript, it is possible to discover the existence of local files. An attacker could then use the information gathered for malicious purposes.”
The site then goes on to say that the attacker would need to know the filename and full directory path in order to take advantage of the security hole, but still, anyone using either Adobe Acrobat or Reader should update them immediately.
Windows users using either Adobe Acrobat 7.x or Adobe Reader 7.x can update their software here.
Adobe does not yet have a security update for the Mac version, and Adobe recommends that until they release an update, Mac users “disable any Acrobat JavaScript to protect your system from this vulnerability. To disable JavaScript in Acrobat, choose Adobe > Preferences >JavaScript and deselect Enable Acrobat JavaScript.”
The Internet Patrol is completely free, and reader-supported. Your tips via CashApp, Venmo, or Paypal are appreciated! Receipts will come from ISIPP.
CashApp us
Venmo us
Paypal us
Just generally sick of Adobe. Can’t get downloads to show up (“Page cannot be loaded”), can’t find out what version I have. Absolutely no help at all. There has to be a modern program than this old fashioned steam engine.
I’m just generally sick of Adobe. Can’t get the needed downloads for security (“can’t find page,” slow to load, no help unless you tell them who you are. Nuts.
Aren’t you sick of Adobe Acrobat Reader trying to be a web browser about now? More exploits to come later.