0day attack in Adobe Reader – again

Topic

New Reply

Yet another 0day PDF attack is making the rounds. If you open an infected PDF file, and you’re using Adobe Acrobat Reader, your PC can get taken over.
[See the full post at: 0day attack in Adobe Reader – again]

Reply | Quote

Replies

Does this also effect full Standard and Professional versions of Adobe Acrobat? Or is it just a Reader issue?

Reply | Quote

It’s a bit soon to see whether Foxit Reader follows suit with Adobe Reader to issue a security update, as they are usually a week or two behind. But as of today, no reports or updates regarding Foxit (I just checked). I will post again if this changes.

Reply | Quote

Daisy –

Yes, in the sense that if you use Standard or Professional to open a PDF file, you can get bit.

Reply | Quote

@woody & @rc primak:

It does not seem that the recent 0day security flaw affects Foxit Reader software.

Here’s the site to report any security vulnerabilities in Foxit Software.

Reply | Quote

Thanks, EP.

Good news, indeed for those of us who use Foxit Reader instead of Adobe Reader.

Reply | Quote

Foxit Reader did in fact issue an update recently. Get it.

Reply | Quote

Are you sure, rc primak? the latest Foxit Reader “update” was released back on November 26, 2009 – version 3.1.4 build 1125 as noted on the Foxit Reader downloads page. Don’t know what you’re talking about, silly rc primak. A recent update would or should have been released in December, NOT in November.

At least those who use Sumatra PDF Viewer are NOT affected by the 0day PDF security flaw. One forum member confirmed it here.

No probs, Woody. You may also want to try out Sumatra PDF Viewer, a light weight PDF file reader that starts up faster than Adobe Reader and Foxit Reader.

Reply | Quote

UPDATE: Adobe is scheduled to release updates to Adobe Reader to fix the 0day PDF attack problem on January 12, 2010 as noted on Adobe’s blog.

Reply | Quote

EP —

In December 2009, I did get a notice in my Foxit Reader Updater that there was a new updated to the main program. I don’t know why you did not get the notice. I applied the update, but it was over some minor issue, not a big security issue, as I recall. My version is also 3.1.4.1125, but it came to me in mid-December. The official date stamp may vary.

Reply | Quote

EP —

Your version of Foxit Reader is the same as mine. But my last update came down in mid-December 2009. Maybe I did no updating of Foxit Reader for awhile, hence the difference. Could have been the November update, in which case, Foxit Reader has not reported any response to the sort of security problem currently facing Adobe Reader. We shall see.

Reply | Quote