Critical Acrobat Reader security flaw exposes Windows to arbitrary exploits

SRTDodge05 · 09-22-2007, 09:47 PM

A security researcher and self-described hacker known as "pdp" claims he has found a critical exploit in Adobe's Acrobat software that can compromise many Windows PCs simply by viewing a maliciously-crafted PDF file. The flaw affects both Windows XP SP2 and Windows 2003; Windows Vista, OS X, and Linux users are unaffected.

The bug affects Acrobat Reader, versions 8.1, 8.0, and 7, either when run in stand-alone mode or embedded inside a web page. Some work-alike PDF readers, such as the svelte Foxit Reader, are also affected but in a lesser manner: they display a confirmation dialog before the exploit is allowed to run.
The exploit uses a flaw in Adobe's scripting language to automatically run an executable program—the discoverer tested this by harmlessly running Calculator and Notepad in a video on his site. Yet, as noted, the exploit could be used to run any program, including a trojan or virus or a scripted attack. The malware in question would have to have already been downloaded onto the victim's computer, but this could be accomplished in various ways, including putting the executable inside a .ZIP file that includes the original PDF, or linking to a remote executable (the latter option would still trigger a warning by the operating system, however).

Critical Acrobat Reader security flaw exposes Windows to arbitrary exploits

**CrowdAds** · [Remove Advertisement]

JMerrick · 09-22-2007, 10:07 PM

I'm still using Acrobat 5.1, best version ever.

XJ. · 09-23-2007, 09:11 AM

I use Foxit, just because AA is such a target (and slow).

Cogar · 09-23-2007, 10:31 AM

Thank you for the warning. It's getting so you cannot trust anyone anymore.

SRTDodge05 · 09-23-2007, 04:01 PM

MS needs to comeout with a pdf program.

3 of 7 · 09-23-2007, 10:23 PM

Quote:

Originally Posted by SRTDodge05

MS needs to comeout with a pdf program.

I don't see it happening.. They could never compete with Foxit and it's free....
They'll probably buy Foxit and bloat it up and make it not work like they did with Giant software..

Come to think of it, I have no idea at all why anyone would even consider using Acrobat reader anymore, with Foxit out there..

bajo · 09-24-2007, 12:52 AM

Well, just switched back to AR 5.1 !

SRTDodge05 · 09-24-2007, 08:17 AM

Quote:

Originally Posted by 3 of 7

I don't see it happening.. They could never compete with Foxit and it's free....
They'll probably buy Foxit and bloat it up and make it not work like they did with Giant software..

Come to think of it, I have no idea at all why anyone would even consider using Acrobat reader anymore, with Foxit out there..

Acrobat reader is the only pdf viewer i use.

3 of 7 · 09-24-2007, 08:24 AM

Quote:

Originally Posted by SRTDodge05

Acrobat reader is the only pdf viewer i use.

Have you tried Foxit?

Foxit Software

SRTDodge05 · 09-24-2007, 08:28 AM

Quote:

Originally Posted by 3 of 7

Have you tried Foxit?

Foxit Software

No, i never heard of it before.

3 of 7 · 09-24-2007, 08:30 AM

Give it a try, I think you'll be surprised..

SRTDodge05 · 09-24-2007, 08:35 AM

I'll have to give it a try, ill add it to my list of things to do.

JMerrick · 09-24-2007, 07:01 PM

Quote:

Originally Posted by bajo

Well, just switched back to AR 5.1 !

5.1 FTW

bajo · 09-24-2007, 07:03 PM

traveler · 09-24-2007, 09:33 PM

Quote:

Originally Posted by JMerrick

I'm still using Acrobat 5.1, best version ever.

I'm currently using v.6. Should I switch back?

09-22-2007, 09:47 PM	#1
SRTDodge05 Grab Life By The Balls Join Date: Jan 2003 Location: Michigan Posts: 7,835	Critical Acrobat Reader security flaw exposes Windows to arbitrary exploits A security researcher and self-described hacker known as "pdp" claims he has found a critical exploit in Adobe's Acrobat software that can compromise many Windows PCs simply by viewing a maliciously-crafted PDF file. The flaw affects both Windows XP SP2 and Windows 2003; Windows Vista, OS X, and Linux users are unaffected. The bug affects Acrobat Reader, versions 8.1, 8.0, and 7, either when run in stand-alone mode or embedded inside a web page. Some work-alike PDF readers, such as the svelte Foxit Reader, are also affected but in a lesser manner: they display a confirmation dialog before the exploit is allowed to run. The exploit uses a flaw in Adobe's scripting language to automatically run an executable program—the discoverer tested this by harmlessly running Calculator and Notepad in a video on his site. Yet, as noted, the exploit could be used to run any program, including a trojan or virus or a scripted attack. The malware in question would have to have already been downloaded onto the victim's computer, but this could be accomplished in various ways, including putting the executable inside a .ZIP file that includes the original PDF, or linking to a remote executable (the latter option would still trigger a warning by the operating system, however). Critical Acrobat Reader security flaw exposes Windows to arbitrary exploits
(Offline)

09-22-2007, 10:07 PM	#2
JMerrick Registered User Join Date: Apr 2006 Posts: 365	Re: Critical Acrobat Reader security flaw exposes Windows to arbitrary exploits I'm still using Acrobat 5.1, best version ever. __________________ OS Microsoft Windows XP Professional SP2 CPU Intel Core 2 Duo E6600 3.0 GHz (Conroe) Motherboard ASUS P5B-E RAM 2 GB Kingston DDR2-667 4-4-4-12 Dual Channel Video NVIDIA GeForce 8800 GT PCI-E 512 MB Audio SoundMAX HD Audio OS Microsoft Windows XP Professional SP2 CPU Intel Pentium 4 3.0 GHz with HT (Northwood) Motherboard ASUS P4P800 Deluxe RAM 1 GB Kingston DDR400 3-3-3-8 Dual Channel Video NVIDIA GeForce 7600 GT AGP 256 MB Audio SoundMAX Digital Audio OS Microsoft Windows XP Professional SP2 CPU Intel Pentium III 1.0 GHz (Coppermine) Motherboard ASUS P3V4X RAM 256 MB Kingston PC133 2-2-2-6 Video NVIDIA GeForce2 MX400 AGP 64 MB Audio Creative Sound Blaster Live!
(Offline)

09-23-2007, 09:11 AM	#3
XJ. Back at the Zone! Join Date: Apr 2002 Location: NH, USA Posts: 6,468	Re: Critical Acrobat Reader security flaw exposes Windows to arbitrary exploits I use Foxit, just because AA is such a target (and slow).
(Offline)

09-23-2007, 10:31 AM	#4
Cogar Level 16, lawful good Join Date: Dec 2002 Location: It varies, but usually within 100 yards of a keyboard. Posts: 7,299	Re: Critical Acrobat Reader security flaw exposes Windows to arbitrary exploits Thank you for the warning. It's getting so you cannot trust anyone anymore.
(Offline)

09-23-2007, 04:01 PM	#5
SRTDodge05 Grab Life By The Balls Join Date: Jan 2003 Location: Michigan Posts: 7,835	Re: Critical Acrobat Reader security flaw exposes Windows to arbitrary exploits MS needs to comeout with a pdf program.
(Offline)

09-24-2007, 12:52 AM	#7
bajo C1eaner Join Date: Feb 2001 Location: TX, USA Posts: 17,274	Re: Critical Acrobat Reader security flaw exposes Windows to arbitrary exploits Well, just switched back to AR 5.1 ! __________________ USA "I won't be wronged, I won't be insulted, and I won't be laid a hand on. I don't do these things to other people, and I require the same from them." Duke (The Shootist) Gigabyte_AGP_LGA775, PentiumD960_dual core 3.6GHz, SapphireHD3850_AGP512MB_DDR2, WD RaptorX 150GB SATA_clearTop_16MB + Seagate 1TB SATA_32MB, CorsairDominator 2GB 8500_1066MHz, Dell 24" 2408WFP *AGP +DVIx2 +HDMI +DisplayPort +USB2x4, XPproSP3 Inspiron9400 17"uxga CentrinoC2duoT7600_2.39GHz_685MHz 4GB Micron6400@800_675_400MHz GeForceGo7900GSMobileForce_M6Enhanced_256MB 2x500GbSATA_7200rpm_16MBcache Vista hp, VistaP6002_SP2
(Offline)

09-24-2007, 08:30 AM	#11
3 of 7 You can run..... Join Date: Feb 2004 Posts: 4,678	Re: Critical Acrobat Reader security flaw exposes Windows to arbitrary exploits Give it a try, I think you'll be surprised..
(Offline)

09-24-2007, 08:35 AM	#12
SRTDodge05 Grab Life By The Balls Join Date: Jan 2003 Location: Michigan Posts: 7,835	Re: Critical Acrobat Reader security flaw exposes Windows to arbitrary exploits I'll have to give it a try, ill add it to my list of things to do.
(Offline)

09-24-2007, 07:03 PM	#14
bajo C1eaner Join Date: Feb 2001 Location: TX, USA Posts: 17,274	Re: Critical Acrobat Reader security flaw exposes Windows to arbitrary exploits __________________ USA "I won't be wronged, I won't be insulted, and I won't be laid a hand on. I don't do these things to other people, and I require the same from them." Duke (The Shootist) Gigabyte_AGP_LGA775, PentiumD960_dual core 3.6GHz, SapphireHD3850_AGP512MB_DDR2, WD RaptorX 150GB SATA_clearTop_16MB + Seagate 1TB SATA_32MB, CorsairDominator 2GB 8500_1066MHz, Dell 24" 2408WFP *AGP +DVIx2 +HDMI +DisplayPort +USB2x4, XPproSP3 Inspiron9400 17"uxga CentrinoC2duoT7600_2.39GHz_685MHz 4GB Micron6400@800_675_400MHz GeForceGo7900GSMobileForce_M6Enhanced_256MB 2x500GbSATA_7200rpm_16MBcache Vista hp, VistaP6002_SP2
(Offline)

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode