Friday, May 1, 2009

Zero Day Exploit in Adobe Acrobat and PDF Reader

Earlier this week, Adobe confirmed the existence of a zero-day exploit in its popular Adobe Acrobat and PDF Reader software for Windows, Mac and Linux. Affected versions include versions 9.1, 8.1.4 and 7.1.1 and earlier. For more details, see this Computerworld article.

Adobe's security bulletin advise that all users of Acrobat and PDF Reader should disable javascript until further notice. I would go further to say that Mac OS X users could uninstall Adobe Acrobat Reader and use Mac OS X's built-in Preview feature instead. As an Ubuntu user myself, I use the open source Evince Document Viewer that is bundled with Ubuntu to view my PDFs. There is really no need to install the non-free Adobe Acrobat for Linux in Ubuntu.

No comments:

Post a Comment