A security researcher has published a proof-of-concept exploit for a known vulnerability in Adobe Reader. The researcher, known only as 'Cyanid-E', unveiled his creation in a posting to the Full Disclosure security mailing list on Tuesday.
The vulnerability has been confirmed on a fully patched Windows XP system running Adobe's Acrobat Reader 8.1 and Internet Explorer 7. Details about the vulnerability were published in late September on the GNU Citizen blog.
View: the full story
News source: vnunet
The vulnerability has been confirmed on a fully patched Windows XP system running Adobe's Acrobat Reader 8.1 and Internet Explorer 7. Details about the vulnerability were published in late September on the GNU Citizen blog.
View: the full story News source: vnunet
why is adobe reader like 20mb and foxit is like 2 yet they do the exact same thing
i bet foxit could patch any hole in their software in like a day
http://neowin.files.googlepages.com/small-bnb.gif
http://neowin.files.googlepages.com/small-bnb.gif
Number one, I order you to take a number two.
yeah yeah eeh ehehehh
The information in the Adobe "workaround" article is incorrect if you are using Windows XP, IE7 and Acrobat Reader 7 as the URL mentioned in the article does not exist for that version of AR.
The correct URL for AR7 is:
Modify the relevant item in this key (from 0x32 to 0x33) to disable the mailto: functionality.
Kind Regards
Simon
Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!
Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.