PDF Vulnerability
Anyone know what the newly discovered Adobe Acrobat PDF vulnerability means--if anything--for Mepis users?
http://news.lp.findlaw.com/ap/ht/58/01-04-2007/2ed800140ce769ac.html
»
Now Shipping Version 8.0
|
|
Now Shipping Version 8.0
|
SearchBook navigationDonatePlease make a donation to help fund SimplyMEPIS development. |
PDF VulnerabilityAnyone know what the newly discovered Adobe Acrobat PDF vulnerability means--if anything--for Mepis users? http://news.lp.findlaw.com/ap/ht/58/01-04-2007/2ed800140ce769ac.html »
|
Buy From MEPISView your shopping cart
When you buy products directly from MEPIS, you help support the further development of SimplyMEPIS. MEPIS LLC Bus Phone: +1.304.288.0993 We accept orders by mail if paid by US check or by money order on US funds. Please note, we are NOT able to accept credit card orders by phone.
|
|
|
Not To Worry (Yet)
I don't think this is a big concern. Here are some more links:
The flaw appears to target Microsoft Corp.'s Internet Explorer 6.0 Web browser and earlier versions, and Mozilla's Firefox browser, the researchers said.
They recommended that users protect themselves by upgrading Internet Explorer or changing Firefox's user options so the browser does not use the Acrobat plug-in.
Here's The Slashdot Link:
http://it.slashdot.org/article.pl?sid=07/01/03/2050206
A Description:
http://www.webappsec.org/lists/websecurity/archive/2007-01/msg00005.html
From that description:
you need to have a PDF file hosted on the target and that's
all about it.
In the Slashdot article, and extrapolating from the comment above, this is a problem at the ISP level. If the ISP (or target location where the PDF is located) has a pdf file, then this exploit can be used. But according to Slashdot this exploit has already been patched.
Of course, if you don't use Internet Explorer then you shouldn't have a problem either (grin).
Jon
SimplyMEPIS Value CD: $17.95
Amount saved not buying Windows Vista Ultimate: $399
Experience gained learning Mepis and helping others: Priceless
Second-Level link...
... http://michaeldaw.org/md-hacks/backdooring-pdf-files/ ...
is an interesting read. It does seem that IE is being specifically targeted as a vector conduit, even when using Firefox at the time. In short, when using Firefox or Acrobat Reader to access the .pdf in question, IE is launched to facilitate further exploit possibilities.
My occupation?
Well, computer geek-stuff, mostly. I could tell you all about it; but, then I would have to delete you.
Thanks For The Additional Link
Thanks for the additional, detailed link EnigmaOne.
Now I wonder if this same vulnerability exists when opening a PDF via tools like kpdf or whether "save link as" in konqueror (or firefox) and then opening the file with kpdf would provide additional security?
Jon
SimplyMEPIS Value CD: $17.95
Amount saved not buying Windows Vista Ultimate: $399
Experience gained learning Mepis and helping others: Priceless
It appears to be bound to
It appears to be bound to java script execution, which raises the musing that, I would think, KPDF could be forbidden access to java script interpretation and execution.
If so, I'm hypothesizing that the answer to your question would be in the affirmative.
My occupation?
Well, computer geek-stuff, mostly. I could tell you all about it; but, then I would have to delete you.