 Adobe Reader updates released |
Welcome Guest to What the Tech! ( Log In | Register ) We specialize in the removal of malicious software (malware), but here you'll find free help and support for all your tech questions. We invite you to ask questions, share experiences, and learn. Explore our message boards, or register now to post messages of your own. Please Start Here. Register today (registration removes advertising)
  |
  Jun 24 2008, 03:24 AM
Post
#1
|
|
 AplusWebMaster  Group: Authentic Member Posts: 3,665 Joined: 30-December 03 From: USA Member No.: 1,643 Operating System: WinXP  |
Security Update available for Adobe Reader and Acrobat 8.1.2 - http://www.adobe.com/support/security/bull.../apsb08-15.html Release date: June 23, 2008 Vulnerability identifier: APSB08-15 CVE number: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2641 Platform: All platforms Affected software versions: * Adobe Reader 8.0 through 8.1.2 * Adobe Reader 7.0.9 and earlier * Adobe Acrobat Professional, 3D and Standard 8.0 through 8.1.2 * Adobe Acrobat Professional, 3D and Standard 7.0.9 and earlier NOTE: Adobe Reader 7.1.0 and Acrobat 7.1.0 are not vulnerable to this issue. Adobe Reader 9 and Acrobat 9, expected to be available by July 2008, are also not vulnerable to this issue. Summary: A critical vulnerability has been identified in Adobe Reader and Acrobat 8.1.2. This vulnerability would cause the application to crash and could potentially allow an attacker to take control of the affected system. Adobe recommends users of Acrobat 8 and Adobe Reader install the 8.1.2 Security Update 1 patch. Solution: Acrobat 8 and Adobe Reader: Adobe recommends Adobe Reader 8 users update to Adobe Reader 8.1.2 Security Update 1, available at the links below: For Windows: http://www.adobe.com/support/downloads/detail.jsp?ftpID=3967 For Macintosh: http://www.adobe.com/support/downloads/detail.jsp?ftpID=3966 Adobe recommends Acrobat 8 users on Windows update to Acrobat 8.1.2 Security Update 1, available here: http://www.adobe.com/support/downloads/detail.jsp?ftpID=3976 Adobe recommends Acrobat 8 users on Macintosh update to Acrobat 8.1.2 Security Update 1, available here: http://www.adobe.com/support/downloads/detail.jsp?ftpID=3977 Adobe recommends Acrobat 3D Version 8 users on Windows update to Acrobat 3D Version 8.1.2 Security Update 1, available here: http://www.adobe.com/support/downloads/detail.jsp?ftpID=3975 Users with Adobe Reader 7.0 through 7.0.9 should upgrade to Adobe Reader 7.1.0: http://www.adobe.com/go/getreader. Acrobat 7 Adobe recommends Acrobat 7 users on Windows update to Acrobat 7.1.0, available here: http://www.adobe.com/support/downloads/pro...latform=Windows Adobe recommends Acrobat 7 users on Macintosh update to Acrobat 7.1.0, available here: http://www.adobe.com/support/downloads/pro...tform=Macintosh Severity rating: Adobe categorizes this as an critical issue and recommends affected users update their installations... NOTE: there are reports that this issue is being exploited in the wild..." - http://blog.trendmicro.com/pdf-exploit-causes-bsod/ June 25, 2008 - "...According to the Adobe Security Bulletin on this issue*, the vulnerability exists in Adobe Reader 7.0.9 and earlier versions, 8.0 to 8.1.2, and in Adobe Acrobat 7.0.9 and earlier versions, 8.0 to 8.1.2... As of the most recent testing, TROJ_PIDIEF.AC is observed to download an info-stealer (mostly monitoring and gathering information about running processes, installed programs and system information) and a spammer which connects the compromised PC to a botnet. The common danger faced by users who encounter downloaders: you never really know what you’re going to get. Since malware writers have continuous access to the URL, they can update the downloaded file with different or more damaging payloads..." * http://www.adobe.com/support/security/bull.../apsb08-15.html 
This post has been edited by AplusWebMaster: Jun 28 2008, 06:42 AM |
 |
 
|
|
Jul 7 2008, 06:45 AM
Post
#2
|
|
|
AplusWebMaster Group: Authentic Member Posts: 3,665 Joined: 30-December 03 From: USA Member No.: 1,643 Operating System: WinXP |
FYI...
Adobe Reader patch, now you see it, now you don't - http://news.cnet.com/8301-13554_3-9979638-33.html June 27, 2008 
|
|
|
|
|
Nov 5 2008, 01:23 AM
Post
#3
|
|
|
AplusWebMaster Group: Authentic Member Posts: 3,665 Joined: 30-December 03 From: USA Member No.: 1,643 Operating System: WinXP |
FYI...
Security Update available for Adobe Reader 8 and Acrobat 8 - http://www.adobe.com/support/security/bull.../apsb08-19.html Release date: November 4, 2008 Vulnerability identifier: APSB08-19 ... Platform: All Platforms Summary: Critical vulnerabilities have been identified in Adobe Reader and Acrobat 8.1.2 and earlier versions. These vulnerabilities would cause the application to crash and could potentially allow an attacker to take control of the affected system. Adobe Reader 9 and Acrobat 9 are -not- vulnerable to these issues. Adobe recommends users of Acrobat 8 and Adobe Reader 8 who can’t update to Adobe Reader 9 install the 8.1.3 update to protect themselves from potential vulnerabilities... Adobe Reader: > Adobe recommends Adobe Reader users update to Adobe Reader 9, available here: http://www.adobe.com/go/getreader [AdbeRdr90_en_US.exe] > Users with Adobe Reader 8.0 through 8.1.2, who can’t update to Adobe Reader 9, should update to Adobe Reader 8.1.3: http://www.adobe.com/products/acrobat/read...llversions.html [AdbeRdr813_en_US.exe] ..." - http://secunia.com/advisories/29773 Last Update: 2008-11-05 Critical: Highly critical Impact: Privilege escalation, System access Where: From remote Solution Status: Vendor Patch Software: Adobe Acrobat 3D 8.x, Adobe Acrobat 8 Professional, Adobe Acrobat 8.x. Adobe Reader 8.x Solution: Upgrade to version 9 or update to version 8.1.3... http://web.nvd.nist.gov/view/vuln/detail?v...d=CVE-2008-2549 http://web.nvd.nist.gov/view/vuln/detail?v...d=CVE-2008-2992 http://web.nvd.nist.gov/view/vuln/detail?v...d=CVE-2008-4812 http://web.nvd.nist.gov/view/vuln/detail?v...d=CVE-2008-4813 http://web.nvd.nist.gov/view/vuln/detail?v...d=CVE-2008-4814 http://web.nvd.nist.gov/view/vuln/detail?v...d=CVE-2008-4815 http://web.nvd.nist.gov/view/vuln/detail?v...d=CVE-2008-4816 http://web.nvd.nist.gov/view/vuln/detail?v...d=CVE-2008-4817
This post has been edited by AplusWebMaster: Nov 6 2008, 05:19 AM |
|
|
|
|
Nov 17 2008, 04:44 PM
Post
#4
|
|
|
AplusWebMaster Group: Authentic Member Posts: 3,665 Joined: 30-December 03 From: USA Member No.: 1,643 Operating System: WinXP |
FYI...
Adobe Reader v9 users w/AIR v1.1 installed - http://isc.sans.org/diary.html?storyid=5363 Last Updated: 2008-11-17 22:21:15 UTC - "...Adobe has released a bulletin and update to Adobe AIR* that they classify as critical. It fixes some of the same vulnerabilities announced earlier in Flash player. Time to update if you are using AIR..." * http://www.adobe.com/support/security/bull.../apsb08-23.html > http://get.adobe.com/air/ Adobe AIR v1.5 Installer http://web.nvd.nist.gov/view/vuln/detail?v...d=CVE-2008-5108 - http://secunia.com/advisories/32772/ Critical: Highly critical Impact: System access Where: From remote Solution Status: Vendor Patch
This post has been edited by AplusWebMaster: Nov 18 2008, 05:30 AM |
|
|
|
|
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:
Similar Topics
| Topic Title | Replies | Topic Starter | Views | Last Action | |||
|---|---|---|---|---|---|---|---|
 |
|
7 | AplusWebMaster | 566 | 1st January 2009 - 08:09 AM Last post by: AplusWebMaster |
||
 |
|
16 | AplusWebMaster | 1,155 | 31st December 2008 - 01:34 PM Last post by: AplusWebMaster |
||
|
|
1 | AplusWebMaster | 55 | 30th December 2008 - 07:20 AM Last post by: AplusWebMaster |
||
|
|
38 | AplusWebMaster | 2,718 | 22nd December 2008 - 05:03 AM Last post by: AplusWebMaster |
||
|
Time is now: 6th January 2009 - 10:12 PM |
Member site: Alliance of Security Analysis Professionals | UNITE Against Malware
© Geeks to Go, Inc. | All Rights Reserved | Privacy Policy
