.

Adobe Confirms New Flaw, Recommends Turning Off JavaScript

<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Thu Apr 30, 2009 3:09 pm

Adobe Confirms New Flaw, Recommends Turning Off JavaScript

From SC Magazine on April 29, 2009:


Adobe on Tuesday confirmed that its popular Reader and Acrobat software contains another zero-day vulnerability.

The bug, first reported in an advisory on Security Focus, impacts all supported versions of Reader and Acrobat on the Windows, Macintosh and Linux platforms. Proof-of-concept code is circulating on the internet, but Adobe representatives said they are not aware of any in-the-wild exploits.

"We are working on a development schedule for these updates and will post a timeline as soon as possible," Adobe's David Lenoe said on the company's Product Security Incident Response Team blog.

In the meantime, Lenoe recommended that users disable JavaScript to protect themselves against attacks. He describes how in the blog post.

News of the flaw, which relates to a JavaScript memory corruption error and garnered a "highly critical" rating from Secunia, comes not long after Adobe was forced to deal with a similar bug that was being targeted in active attacks -- but took the software giant weeks to patch. Some observers criticized the company for the delayed disclosure of the bug and the subsequent slow fix, while others recommended using alternative PDF readers, such as Foxit.

"This is not the first time that critical vulnerabilities have been found in Adobe's software," Sophos' Graham Cluley said on Wednesday his blog. "And there is growing concern tha the vendor's dominant market share of the PDF reader market is proving extremely attractive for hackers hellbent on infecting as many PCs as possible."

Adobe representatives defended their stance, saying they did not want to reveal too much information to potential attackers.



Original story:
http://www.scmagazineus.com/Adobe-confi ... le/131576/

This is even more interesting as I just attended the OWASP Chicago meeting last night, and our guest speaker was Rafal Los of HP. He spoke on hacking RIA (Rich Internet Apps) including pdf, flash, etc. He specifically stated, "Why in the world would you ever put JavaScript in a PDF document?" Timing couldn't have been better.

Don
CISSP, MCSE, CSTA, Security+ SME
<<

venom77

User avatar

Hero Member
Hero Member

Posts: 1905

Joined: Mon Dec 11, 2006 3:23 pm

Post Thu Apr 30, 2009 3:16 pm

Re: Adobe Confirms New Flaw, Recommends Turning Off JavaScript

There was a short string on the GIAC mailing list regarding this as well. Looks like if you need to push out a fix, you can set this key to 0:

"HKCU\Software\Adobe\Adobe Acrobat\9.0\JSPrefs\bEnableJS"
<<

timmedin

User avatar

Sr. Member
Sr. Member

Posts: 469

Joined: Thu Feb 05, 2009 11:18 pm

Post Thu Apr 30, 2009 11:41 pm

Re: Adobe Confirms New Flaw, Recommends Turning Off JavaScript

Why does a document viewer need javascript anyhow?

Got tired of patching Adobe at work so I switched to FoxIt at home. Seems a little lighter too.

</mini-rant>
twitter.com/timmedin | http://blog.securitywhole.com
<<

Ketchup

User avatar

Hero Member
Hero Member

Posts: 1021

Joined: Fri Jul 04, 2008 7:44 pm

Location: Philadelphia, PA

Post Fri May 01, 2009 7:14 am

Re: Adobe Confirms New Flaw, Recommends Turning Off JavaScript

I agree, Adobe Acrobat is much too bloated and unstable. 
~~~~~~~~~~~~~~
Ketchup
<<

Dark_Knight

User avatar

Sr. Member
Sr. Member

Posts: 294

Joined: Mon Aug 11, 2008 7:03 pm

Post Fri May 01, 2009 10:14 am

Re: Adobe Confirms New Flaw, Recommends Turning Off JavaScript

The exploit sold for 75K on the Black Market
CEH, OSCP, GPEN, GWAPT, GCIA
http://sector876.blogspot.com

Return to Malware

Who is online

Users browsing this forum: No registered users and 1 guest

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software