PC/Mac Adobe Flash Player Flaw Lets Hackers In

Antaletriangle · 02-26-2009, 08:25 PM

http://www.adobe.com/support/securit...apsa09-01.html

Buffer overflow issue in versions 9.0 and earlier of Adobe Reader and Acrobat
Release date: February 19, 2009

Vulnerability identifier: APSA09-01

CVE number: CVE-2009-0658

Platform: All platforms

SummaryA critical vulnerability has been identified in Adobe Reader 9 and Acrobat 9 and earlier versions. This vulnerability would cause the application to crash and could potentially allow an attacker to take control of the affected system. There are reports that this issue is being exploited.

Adobe is planning to release updates to Adobe Reader and Acrobat to resolve the relevant security issue. Adobe expects to make available an update for Adobe Reader 9 and Acrobat 9 by March 11th, 2009. Adobe is planning to make updates for Adobe Reader 7 and 8, and Acrobat 7 and 8, available by March 18th. In the meantime, Adobe is in contact with anti-virus and security vendors, including McAfee, Symantec and others, on this issue in order to ensure the security of our mutual customers. More information on protection for this issue from anti-virus and security vendors is now available on the Adobe Product Security Incident Response Team blog.

Reports have been published that disabling JavaScript in Adobe Reader and Acrobat can protect users from this issue. Disabling JavaScript provides protection against currently known attacks. However, the vulnerability is not in the scripting engine and, therefore, disabling JavaScript does not eliminate all risk. Should users choose to disable JavaScript, it can be accomplished following the instructions below:

Launch Acrobat or Adobe Reader.
Select Edit>Preferences
Select the JavaScript Category
Uncheck the ‘Enable Acrobat JavaScript’ option
Click OK
A security bulletin will be published on http://www.adobe.com/support/security as soon as product updates are available.

All documented security vulnerabilities and their solutions are distributed through the Adobe security notification service. You can sign up for the service at the following URL: http://www.adobe.com/cfusion/entitle....cfm?e=szalert

Affected software versionsAdobe Reader 9 and earlier versions
Adobe Acrobat Standard, Pro, and Pro Extended 9 and earlier versions

Severity ratingAdobe categorizes this as a critical issue and recommends that users update their virus definitions and exercise caution when opening files from untrusted sources.

RevisionsFebruary 24, 2008 – Advisory updated
February 19, 2009 – Advisory first created

Czymra · 02-26-2009, 08:39 PM

Why use Adobe Reader when you're on a Mac? Granted it might be able to do some things more than Preview but to be safe, use Preview online and Reader offline.
To do this one must deinstall the Adobe Reader Internet Plug in:

Go to Library/Internet Plug-Ins/ and find the adobe reader plugin and delete it.

Yet, I wonder why this was posted here Antale?

02-26-2009, 08:25 PM	#1
Antaletriangle Avalon Senior Member Join Date: Sep 2008 Location: U.K. Posts: 3,380	PC/Mac Adobe Flash Player Flaw Lets Hackers In http://www.adobe.com/support/securit...apsa09-01.html Buffer overflow issue in versions 9.0 and earlier of Adobe Reader and Acrobat Release date: February 19, 2009 Vulnerability identifier: APSA09-01 CVE number: CVE-2009-0658 Platform: All platforms SummaryA critical vulnerability has been identified in Adobe Reader 9 and Acrobat 9 and earlier versions. This vulnerability would cause the application to crash and could potentially allow an attacker to take control of the affected system. There are reports that this issue is being exploited. Adobe is planning to release updates to Adobe Reader and Acrobat to resolve the relevant security issue. Adobe expects to make available an update for Adobe Reader 9 and Acrobat 9 by March 11th, 2009. Adobe is planning to make updates for Adobe Reader 7 and 8, and Acrobat 7 and 8, available by March 18th. In the meantime, Adobe is in contact with anti-virus and security vendors, including McAfee, Symantec and others, on this issue in order to ensure the security of our mutual customers. More information on protection for this issue from anti-virus and security vendors is now available on the Adobe Product Security Incident Response Team blog. Reports have been published that disabling JavaScript in Adobe Reader and Acrobat can protect users from this issue. Disabling JavaScript provides protection against currently known attacks. However, the vulnerability is not in the scripting engine and, therefore, disabling JavaScript does not eliminate all risk. Should users choose to disable JavaScript, it can be accomplished following the instructions below: Launch Acrobat or Adobe Reader. Select Edit>Preferences Select the JavaScript Category Uncheck the ‘Enable Acrobat JavaScript’ option Click OK A security bulletin will be published on http://www.adobe.com/support/security as soon as product updates are available. All documented security vulnerabilities and their solutions are distributed through the Adobe security notification service. You can sign up for the service at the following URL: http://www.adobe.com/cfusion/entitle....cfm?e=szalert Affected software versionsAdobe Reader 9 and earlier versions Adobe Acrobat Standard, Pro, and Pro Extended 9 and earlier versions Severity ratingAdobe categorizes this as a critical issue and recommends that users update their virus definitions and exercise caution when opening files from untrusted sources. RevisionsFebruary 24, 2008 – Advisory updated February 19, 2009 – Advisory first created

02-26-2009, 08:39 PM	#2
Czymra Avalon Senior Member Join Date: Nov 2008 Location: Germany Posts: 1,151	Re: PC/Mac Adobe Flash Player Flaw Lets Hackers In Why use Adobe Reader when you're on a Mac? Granted it might be able to do some things more than Preview but to be safe, use Preview online and Reader offline. To do this one must deinstall the Adobe Reader Internet Plug in: Go to Library/Internet Plug-Ins/ and find the adobe reader plugin and delete it. Yet, I wonder why this was posted here Antale?