Tech Analysis - Channel Insider
Empowering the next generation Channel
 

Sponsored Links
  • Try Windows Azure free for 90 days

  • Introducing the world's first family of systems with integrated expertise

  • FREE Securing Smartphones & Tablets for Dummies Book from Sophos
  • 5 New Technologies That Will Change Enterprise ITAdvertisement
  • Build an IT Infrastructure That Delivers the Future

    		•  

    Simple Fix for Adobe Reader's Latest JavaScript Vulnerability

    in Tech Analysis



    DATE: 2009-04-29 | By Frank Ohlhorst
    Article Rating:starstarstarstarstar / 7
    Article Views: 9385

    Yet another zero-day vulnerability appears for an Adobe product. Don’t wait for the company to patch the product; act now to protect systems.

    Rate This Article:
    Poor Best
    Add This Article To:

    On April 28, the U.S. Computer Emergency Readiness Team warned users of Adobe Reader that a critical vulnerability could allow remote hackers to execute malicious code. That vulnerability has its roots in how the product works with JavaScript and can lead to an exploit where remote attackers could wreak havoc on a user's system. Several versions of Adobe’s Reader are subject to the JavaScript vulnerability and Adobe is working on security updates to fix the problem.

    Users of the product need not wait for Adobe and risk attack; they can make a simple, temporary change to Adobe Reader’s settings, disabling external JavaScript support. Users can accomplish that by changing program preferences under the application's Edit>Preferences tab; they can disable JavaScript by unchecking the "Enable Acrobat JavaScript" box.

    Although Adobe reports that there are no known attacks occurring in the wild, that is sure to change now that the vulnerability has been exposed.  To avoid the vulnerability, users can choose to install alternatives to Adobe’s Reader, such as FoxIT reader, Okular or Sumatra PDF.




    comments dic


     
     
    >>> More Tech Analysis Articles          >>> More By Frank Ohlhorst
     



    		 


    Related Content

    Articles Labs/How-To Multimedia

    channel chatter


    HTML PLAIN TEXT

    Keep on top of news for VARs and Resellers with CI's Weekly Newsletter and Alerts.


    [ci] feeds
    XML
    Add Channel News, Product Reviews, Trends and Analysis to your RSS newsreader or My Yahoo!

     

    CHANNEL SPONSORED RESOURCE CENTER
     
     
     
    Start the New Year with business intelligence—it’s a smart move
    Join us on February 1 for an encore rebroadcast at either 5 am or 12 noon EST and discover how business intelligence (BI) supports companies in uncertain business and economic climates. Get expert advice on how to create a strategy that fits your organization's needs and budget and see how quickly it can pay for itself.
    Click Here
     
    Security and Availability Essentials for Running Your Business in the Cloud
    Are you moving to the cloud? Find out what every IT professional should know about security and availability before moving to the cloud. Hear what a security provider’s own CSO has to say.
    Watch Video
    A new algorithm automatically identifies relationships between variables to help reduce researcher prejudice.
    Click HereAdvertisement