Adobe says Acrobat, Reader vulnerable to hacks

This is a disturbing as most white pages and manuals ranging from automobiles and computer motherboards are in PDF format. Even eBooks could be an easy way for a hacker to gain access to your machine, illegal books put online could be a trap for unsuspecting downloaders. Adobe says Acrobat, Reader vulnerable to hacks – BOSTON (Reuters) – Adobe Systems Inc, whose software is used by millions of people to read documents sent over the Internet, said on Wednesday some of its programs contain yet-to-be-fixed flaws that make computers vulnerable to attack. On October 5, Adobe posted a notice on its Web site that said it had unknowingly incorporated vulnerabilities into versions of Adobe Reader and Acrobat software that could allow malicious programs to get on to a PC without the user’s knowledge.

This is a disturbing as most white pages and manuals ranging from automobiles and computer motherboards are in PDF format. Even eBooks could be an easy way for a hacker to gain access to your machine, illegal books put online could be a trap for unsuspecting downloaders.


Adobe says Acrobat, Reader vulnerable to hacks
– BOSTON (Reuters) – Adobe Systems Inc, whose software is used by millions of people to read documents sent over the Internet, said on Wednesday some of its programs contain yet-to-be-fixed flaws that make computers vulnerable to attack.

On October 5, Adobe posted a notice on its Web site that said it had unknowingly incorporated vulnerabilities into versions of Adobe Reader and Acrobat software that could allow malicious programs to get on to a PC without the user’s knowledge.

Such malicious software can take control of a machine and steal confidential data, send out tens of thousands of spam e-mails, or infiltrate government computer systems.

Adobe said it believes the flaws only affect computers running Microsoft Corp’s Windows XP operating system and Internet Explorer 7 Web browser. Adobe said it was working to rectify the problem but the fix might not be available until the end of October.

Some security experts say that may not be soon enough to stop hackers determined to get malicious software past firewalls and other security software programs.

“Users should pressure Adobe to release a patch sooner than that,” said Gadi Evron, a security expert at Beyond Security. He has organized three closed-door international conferences on efforts by governments and private companies to fight computer attacks.

Malicious software is a common problem. Recent examples have corrupted eBay Inc’s Skype Internet telephone service and Time Warner Inc’s AOL instant messaging software. Hackers sometimes hide malicious software inside Microsoft Word documents and photo files, hobbling computers when users open them.

Some security experts said that what makes the Adobe case disturbing is that it came to light before the company had a solution to fix the problem, which means hackers have an opportunity to exploit the

Read the full story at Reuters

0 Shares:
You May Also Like

Updating a windows driver can cause Vista to de-activate

The full article ventures into the troublesome problem that will leave you with a de-activated Vista, and the only way to get back to normal would be a call to Microsoft and a new Activation Code. Wasn't Vista going to allow 3 hardware swaps, and then you would be required to re-activate your copy of Vista?

Layeredpanel 1.0.6 (Default branch)

Layeredpanel 1.0.6 (Default branch) - Screenshot Layeredpanel is a freehosting panel which allows Linux hosters and administrators to open a large-scale freehosting platform for their users. It includes an easy-to-use interface for administrators and users alike to create user profiles, databases, and complete sites. It features one-click installation of well-known applications like phpBB and Joomla.

[FreshMeat]

ZFS On Linux – It’s Alive!

This is just lovely. A file system that can take automatic snap shots!
ZFS On Linux - It's Alive! - lymeca writes "LinuxWorld reports that Sun Microsystem's ZFS filesystem has been converted from its incarnation in OpenSolaris to a module capable of running in the Linux user-space filsystem project, FUSE. Because of the license incompatibilities with the Linux kernel, it has not yet been integrated for distribution within the kernel itself. This project, called ZFS on FUSE, aims to enable GNU/Linux users to use ZFS as a process in userspace, bypassing the legal barrier inherent in having the filesystem coded into the Linux kernel itself. Booting from a ZFS partition has been confirmed to work. The performance currently clocks in at about half as fast as XFS, but with all the success the NTFS-3g project has had creating a high performance FUSE implementation of the NTFS filesystem, there's hope that performance tweaking could yield a practical elimination of barriers for GNU/Linux users to make use of all that ZFS has to offer."

Read more of this story at Slashdot.

[Slasdot]

The Privacy of Email

NSA wire taps my Drupal?
The Privacy of Email - Anonymous Coward writes "A U.S. appeals court in Ohio has ruled that e-mail messages stored on Internet servers are protected by the Constitution as are telephone conversations and that a federal law permitting warrantless secret searches of e-mail violates the Fourth Amendment. 'The Stored Communications Act is very important,' former federal prosecutor and counter-terrorism specialist Andrew McCarthy told United Press International. But the future of the law now hangs in the balance."

Read more of this story at Slashdot.

[Slasdot]