Facebook Plunges Again
Tumblr 101: Tips And Tricks To Get Started
Adobe Acrobat bug more dangerous than originally thought
Because of the way Adobe integrates into Windows explorer - to provide metadata information about PDF files - there is a chance that your system could become infected without ever opening a single file. Since the bug's code can be placed within a file's metadata, any action that calls that data could set things in motion. That includes something as simple as hovering your mouse over the file icon, according to Obsessable's Stephen Schenck.
In the original post, I suggested using an alternative application to read files, but that won't fully address the vulnerability. To be completely safe, you'll have to remove Adobe Reader (and presumably, Acrobat as well) from your system for the time being and reinstall it once Adobe has developed a patch.
[ via Obsessable ]
Comments
16
Subscribe to commentsSamMar 5th 2009 6:53PM
does it also make your acrobat change to Spanish?
DuncanMar 5th 2009 7:29PM
Use Foxit reader instead, its faster and generally less of a resource hog anyway.
Hamman SamuelMar 6th 2009 3:51AM
Totally agree, Foxit is my choice from all the PDF viewers out there.
The GnomeMar 5th 2009 7:40PM
Go Foxit Reader
gt-racerMar 5th 2009 8:07PM
does the uninstall include air and flash player?
von BloggerMar 5th 2009 9:43PM
Maybe this is a dumb question, but would Norton 360 (or similar antivirus software) help with this Acrobat problem? Thanks for feedback.
LMMMar 6th 2009 1:33AM
My educated guess is no. The Acrobat bug is an exploit, meaning it triggers a problem within Acrobat's coding that creates a whole separate problem. Typically an exploit is used to cause the program being exploited to either harm the machine by deleting files, tell the machine to read some info and send it somewhere (like passwords), or tell the machine to download and execute a virus. So in other words, any sort of virus would happen AFTER the bug was exploited, not before.
Long story short: the answer to your question is no. But then again I'm not an expert and I didn't read the security brief on this particular bug.
LMMMar 6th 2009 1:38AM
Sorry to double-post, but I read the security briefing on this bug real quick out of curiosity. It's pretty vague, but it says Adobe's working with anti-virus companies to get this sorted out. In other words, the anti-virus people are either working on or have already distributed updated virus definitions to avoid this, but since that's not explicitly stated anywhere, they also may not have been able to do anything yet.
Long story short: There is no definite answer to your question. Disable Adobe Acrobat and Reader until they put out a bug fix just to be safe.
BrianMar 5th 2009 11:15PM
The developers of Foxit have confirmed that this doesn't affect their software. Good thing I use it! :)
JJMar 6th 2009 3:44AM
I use Foxit Reader but for PDF creation and editing, I use Adobe Acrobat.
With this exploit, I don't know any other good PDF editor/creator I can use in place of Acrobat.
EdgardoMar 6th 2009 8:45AM
Does anyone know if Nitro PDF Pro is affected?
rush0Mar 6th 2009 8:50AM
How is meta data secured in other programs?
palmercMar 6th 2009 10:52AM
Use Apple Preview and you will be fine.
Cheers
The Captain
Lee MathewsMar 6th 2009 10:23AM
As stated in the post, you have to get Acrobat completely off your system.
It's not enough to leave Acrobat installed and use a different app to open files since the bug can be triggered without opening a file. Shell integration, FTL.
Not sure if this part of the bug affects Mac, but it's best to play it safe.
CaptainColMar 6th 2009 11:01AM
Sorry Lee read your own posts and the subsequent links and you will see this is fine.
Racetrack_OwnerMar 6th 2009 4:24PM
To be fair, you'd first have to actually download an infected PDF to your local machine, and it doesn't appear that this crucial step has been automated in any fashion. It's bad (which I'd have said about Acrobat anyway) but its viability as a "useful" exploit is questionable at best. Basically... if you can get somebody to download a malicious attachment or file, there are probably easier ways to infect their machine than this.