In association with heise online

« previous | next »
You can send this piece of news from The H as an email:

You can specify up to 5 recipients, separated by commas.

Passphrase Bitte Grafik laden

Your personal data will only be used to deliver this mail. The data will not be used for any other purposes.

Adobe to close Acrobat and Reader holes on May 12

Adobe plans to release a security update for Adobe Reader and Acrobat on the 12th of May. The update will remove the recently announced critical buffer overflow in the JavaScript function getAnnots(). Attackers could prepare PDF documents which could crash either application and potentially allow them to take control of the affected system. The updates will be available for Windows versions 7.x, 8.x, 9.x and UNIX and Mac versions 8.x and 9.x of Adobe Reader and Acrobat.

The update of the UNIX version will also close a second hole in the JavaScript functionality where the customDictionaryOpen method can be manipulated to cause a denial of service or execute arbitrary code. Until the release of the updates, Adobe recommends disabling the processing of JavaScript in its products by selecting Edit/Preferences/JavaScript and un-checking the "Enable Acrobat JavaScript" option.

See also:

(djwm)

The H Open Headlines
    • May's Community Calendar

            Price Insight Top 10 powered by Skinflint

            1. Samsung SSD 840 Pro Series 256GB
            2. Samsung SSD 840 Series 250GB
            3. HTC One 32GB schwarz
            4. Samsung Galaxy S4 i9505 16GB schwarz
            5. Intel Core i5-3570K
            6. Seagate Desktop HDD.15 4000GB
            7. Western Digital Red 3000GB
            8. Samsung SSD 840 Series 120GB
            9. HTC One 32GB silber
            10. Samsung Galaxy S3 i9300 16GB blau

            The H

            The H Open

            The H Security

            The H Developer

            The H Internet Toolkit