Adobe says Acrobat, Reader vulnerable to hacks

  • October 12, 2007
  • 2 minute read
This is a disturbing as most white pages and manuals ranging from automobiles and computer motherboards are in PDF format. Even eBooks could be an easy way for a hacker to gain access to your machine, illegal books put online could be a trap for unsuspecting downloaders. Adobe says Acrobat, Reader vulnerable to hacks – BOSTON (Reuters) – Adobe Systems Inc, whose software is used by millions of people to read documents sent over the Internet, said on Wednesday some of its programs contain yet-to-be-fixed flaws that make computers vulnerable to attack. On October 5, Adobe posted a notice on its Web site that said it had unknowingly incorporated vulnerabilities into versions of Adobe Reader and Acrobat software that could allow malicious programs to get on to a PC without the user’s knowledge.

This is a disturbing as most white pages and manuals ranging from automobiles and computer motherboards are in PDF format. Even eBooks could be an easy way for a hacker to gain access to your machine, illegal books put online could be a trap for unsuspecting downloaders.


Adobe says Acrobat, Reader vulnerable to hacks – BOSTON (Reuters) – Adobe Systems Inc, whose software is used by millions of people to read documents sent over the Internet, said on Wednesday some of its programs contain yet-to-be-fixed flaws that make computers vulnerable to attack.

On October 5, Adobe posted a notice on its Web site that said it had unknowingly incorporated vulnerabilities into versions of Adobe Reader and Acrobat software that could allow malicious programs to get on to a PC without the user’s knowledge.

Such malicious software can take control of a machine and steal confidential data, send out tens of thousands of spam e-mails, or infiltrate government computer systems.

Adobe said it believes the flaws only affect computers running Microsoft Corp’s Windows XP operating system and Internet Explorer 7 Web browser. Adobe said it was working to rectify the problem but the fix might not be available until the end of October.

Some security experts say that may not be soon enough to stop hackers determined to get malicious software past firewalls and other security software programs.

“Users should pressure Adobe to release a patch sooner than that,” said Gadi Evron, a security expert at Beyond Security. He has organized three closed-door international conferences on efforts by governments and private companies to fight computer attacks.

Malicious software is a common problem. Recent examples have corrupted eBay Inc’s Skype Internet telephone service and Time Warner Inc’s AOL instant messaging software. Hackers sometimes hide malicious software inside Microsoft Word documents and photo files, hobbling computers when users open them.

Some security experts said that what makes the Adobe case disturbing is that it came to light before the company had a solution to fix the problem, which means hackers have an opportunity to exploit the

Read the full story at Reuters


Did you like this article?


0 Shares:
Share 0
Tweet 0
Share 0
Share 0
— Previous article

Novell and RedHat Linux vs IP Innovation LLC: Was Ballmer right?

Next article —

NEC's VersaPro VY10A/C-4 laptop lasts 14.5-hours on a single charge

You May Also Like

Darpa funds invisible, shoot-through shield

  • by
  • June 22, 2007
Darpa funds invisible, shoot-through shield -

Filed under:


In a move seemingly influenced in equal parts by Halo and David Lynch's film Dune, Darpa has announced that it's ponying up $15 million to develop one-way-invisible, self-healing, shoot-through shields for use in urban combat. While the Pentagon's research division acknowledges that there are "significant technical obstacles" in the process, it's fairly gung-ho about developing a technology combining metamaterials, 'coded' obscurant systems, and a bunch of other stuff no one really understands. Trust us, you'll thank them if the Harkonens try and overthrow your spice-mining operation.

[Via Digg]

 

Read | Permalink | Email this | Comments

Office Depot Featured Gadget: Xbox 360 Platinum System Packs the power to bring games to life!

 [EnGadget]
Read More

CheckGmail 1.12 (Default branch)

  • by
  • June 24, 2007
CheckGmail 1.12 (Default branch) - Screenshot CheckGmail is a system tray application that checks a Gmail account for new mail. It is fast, secure, and uses minimal bandwidth via the use of Atom feeds.
License: GNU General Public License (GPL)
Changes:
This release adds information about attachments and clickable URIs in the message full text. Numerous bugs have been fixed, including the issues with XGL/Compiz, international character display, and multiple monitors.

[FreshMeat]
Read More
UUncategorized

Microsoft changes mind, agrees to fix IE’s URI handler

Microsoft agrees to release a patch to fix some of the security issues but not all in Internet Explorers URI Handler. I don't understand why Microsoft has such a lazy stance on security, I want to use Internet Explorer just as securely as any other browser. One mis-typed url after a fresh install of Windows could cause malicious software to gain entry to me desktop.
Microsoft changes mind, agrees to fix IE's URI handler - Microsoft has stated that they will be releasing a patch to fix some, but not all, potential security flaws resulting from third-party applications being fed maliciously malformed URI requests.Read More...
Read More