Adobe Acrobat Reader PDF file DoS vulnerability

Grok Headline matches for Adobe Acrobat Reader PDF file DoS vulnerability

Adobe Acrobat/Acrobat Reader
Vulnerability

Adobe Acrobat/Acrobat Reader
Vulnerability 08/14/2004 08:23 AM

Direct and Related Links for 'Adobe Acrobat/Acrobat Reader Vulnerability'

“Adobe Acrobat/Acrobat Reader ActiveX Control Buffer Overflow Vulnerability…iDEFENSE has confirmed the existence of this vulnerability in Adobe Acrobat 5.0.5, specifically, pdf.ocx version 5.0.5.452. It is suspected that all current versions of Adobe Acrobat/Acrobat Reader are affected by this vulnerability….WORKAROUND Change Adobe Acrobat/Acrobat Reader settings to prevent PDF files from automatically opening when accessed via a web browser. When prompted, first save the file to disk before opening thereby closing the exploitation vector escribed….Adobe has stated…

[ GLSA 200412-12 ] Adobe Acrobat Reader:
Buffer overflow vulnerability

[ GLSA 200412-12 ] Adobe Acrobat Reader:
Buffer overflow vulnerability 12/19/2004 03:48 PM
Luke Macken (Dec 16 2004)

Update: Adobe Acrobat/Adobe Reader 7.0.1

Update: Adobe Acrobat/Adobe Reader 7.0.1 04/04/2005 11:20 AM
These updates address form workflows, 2D barcodes, and viewing PDF files that contain 3D content generated in 3D CAD or modeling programs.

Adobe Acrobat Reader 6.0.2

Adobe Acrobat Reader 6.0.2 12/19/2004 03:36 PM
View and print Adobe PDF files on a variety of hardware and operating system platforms.

Adobe Acrobat Reader 7.9.0 Beta

Adobe Acrobat Reader 7.9.0 Beta 09/14/2004 07:00 AM

Adobe Acrobat Reader 6.0.2 Update

Adobe Acrobat Reader 6.0.2 Update 06/08/2004 06:06 AM

Adobe Acrobat Reader 7.0.0 Final

Adobe Acrobat Reader 7.0.0 Final 12/22/2004 01:17 AM

Adobe Finalizes Linux Acrobat Reader

Adobe Finalizes Linux Acrobat Reader 04/12/2005 02:45 PM
Adobe has followed up its March public beta of Acrobat Reader 7 for Linux with a version it has deemed final. The release brings back the PDF viewer for the open source platform, after Adobe skipped version 6. The company cited customer demand for creating a Linux edition, although it took Adobe three extra months to prepare.

Adobe releases patches for Acrobat and
Reader

Adobe releases patches for Acrobat and
Reader 06/17/2005 03:18 PM
Adobe Systems on Wednesday rolled out patches for security vulnerabilities found in Adobe Reader 7.0 and 7.0.1, and in Adobe Acrobat 7.0 and 7.0.1.

The hole in the products, referred to as an XML External Entity vulnerability, under certain circumstances allows XML scripts to be used to discover a user's local files.

According to Adobe officials, the vulnerability is within the Adobe Reader control. If an XML script is embedded in JavaScript, it is possible to discover the existence of local files, according to a security advisory from the company. An attacker could then maliciously use the gathered information. But the statement pointed out that the local files can be found only if the attacker knows the complete file names and paths in advance of such an attack.

The vulnerability impacts Acrobat and Reader running on Windows and Mac platforms.

Adobe recommends that Reader and Acrobat for Windows customers download the updates provided on the Adobe Web site here.

The company said it will release an update for the Mac OS versions shortly. Until the Mac patch is available, Adobe advises end-users to disable any Acrobat JavaScript. This should protect systems from the vulnerability.

Download: Get the Patch
News source: InfoWorld

Read full story...

Adobe beta tests Acrobat Reader 7.0

Adobe beta tests Acrobat Reader 7.0 09/21/2004 09:08 AM
Form filler

Adobe Repairs Reader, Acrobat Flaws

Adobe Repairs Reader, Acrobat Flaws 12/17/2004 06:37 PM

Managing Adobe Acrobat Reader 6.0
settings

Managing Adobe Acrobat Reader 6.0
settings 02/15/2004 09:28 AM

Adobe releases Acrobat 7 with Linux
reader support

Adobe releases Acrobat 7 with Linux
reader support 01/06/2005 12:10 AM
ZDNet Jan 6 2005 2:18AM GMT

Adobe Reader 6.0 Filename Handler Buffer
Overflow Vulnerability

Adobe Reader 6.0 Filename Handler Buffer
Overflow Vulnerability 07/13/2004 10:33 AM
“Exploitation of a buffer overflow vulnerability in Adobe Reader 6.0 could allow remote attackers to execute arbitrary code….Successful exploitation allows an attacker to execute arbitrary code under the privileges of the local user. Remote exploitation is possible by sending a specially crafted e-mail and attaching the malicious PDF document….iDEFENSE has confirmed that Adobe Acrobat Reader version 6.0.1 is vulnerable. It is suspected that other versions of Adobe Acrobat Reader are vulnerable as well. Adobe Acrobat may also be vulnerable.”

KDE Security Advisory: VCF file
information reader vulnerability

KDE Security Advisory: VCF file
information reader vulnerability 01/16/2004 10:59 AM
Dirk Mueller (Jan 14 2004)

Adobe Systems Tech Note on Deploying
Adobe Acrobat 5.0

Adobe Systems Tech Note on Deploying
Adobe Acrobat 5.0 09/13/2004 09:56 PM

Acrobat Reader 7

Acrobat Reader 7 12/27/2004 07:52 PM

Adobe Acrobat Reader 7.0: Acrobat Reader 7.0 is out, and it sounds like it's much less aggravating.

Adobe have finally got around to addressing the biggest single problem with the Acrobat Reader - startup speed. In my web-browser (Firefox), Version 7.0 startup is quicker than I ever remember it being. There's no splash screen and no (visible) plug-in initialisation, just a quick transition from web page to PDF - even on first load!

Acrobat Reader 5.0.9

Acrobat Reader 5.0.9 06/23/2004 10:28 PM
Acrobat reader for linux and other unices

Adobe presenta Adobe Reader 7 para
GNU/Linux

Adobe presenta Adobe Reader 7 para
GNU/Linux 04/14/2005 12:45 PM

Adobe Acrobat 7.0 now available

Adobe Acrobat 7.0 now available 01/05/2005 01:20 AM
Adobe today announced the immediate availability of Acrobat 7.0, the latest version of its PDF (Portable Document Format) software...

Save completed Acrobat Reader fill-in
forms

Save completed Acrobat Reader fill-in
forms 04/26/2004 10:24 AM
Today I did my taxes using the "Fill-in" Acrobat forms. And discovered that the Acrobat Reader is crippled in that it can't save these forms; you get a "please pay money to upgrade" message. Frustrating. So, I think smugly...

Adobe Acrobat X 'By End Of Year'

Adobe Acrobat X 'By End Of Year' 09/17/2004 12:12 PM
Adobe Systems says it is on track to ship a much-enhanced version of its Acrobat document management software by the end of the year. By Macworld UK (via MyAppleMenu)

Adobe releases Acrobat 7.0

Adobe releases Acrobat 7.0 01/05/2005 11:04 AM
Adobe Systems Inc. on Wednesday announced the release of Adobe Acrobat 7.0 software, the latest version of its software application series for creating files in Portable Document Format (PDF). Improvements in the new version include the ability to assemble documents from multiple sources, create intelligent forms, collaborate on projects outside of the corporate firewall and more.

Update: Adobe Acrobat 6.0.2

Update: Adobe Acrobat 6.0.2 06/09/2004 10:31 AM
Adobe released Acrobat 6.0.2, which "addresses multiple known issues in Adobe Acrobat 6.0."

Adobe Leaves Behind 9x with Acrobat 7

Adobe Leaves Behind 9x with Acrobat 7 12/24/2004 12:24 PM
Customers who have not made the upgrade to Windows 2000 SP2 or XP will find themselves unable to view and create the newest PDF files. Adobe Acrobat 7.0 does not support the Windows 9x code base; instead, Adobe has opted to offer its latest release only to users who are running recent versions of Windows.

Adobe on Target for "Acrobat X"

Adobe on Target for "Acrobat X" 09/16/2004 10:41 PM
Adobe Systems is on track to ship a major update of its Acrobat document management software by the end of the calendar year dubbed "Acrobat X". Acrobat, a suite of tools for the PDF format, is the lynchpin of Adobe's "intelligent document" platform strategy.

Adobe suspends Acrobat update for Mac

Adobe suspends Acrobat update for Mac 12/19/2004 02:51 PM
Adobe Systems Inc. has temporarily suspended its 6.0.3 update for Mac OS versions of Acrobat 6.0 Professional and Standard. According to Adobe, it has identified a problem with generating Adobe PDF files with Microsoft Office 2004 for Mac and the 6.0.3 update. A message on the Adobe website says the update will be reposted shortly after this issue has been resolved. “The Office for Mac issue is not related to the security vulnerabilities addressed by the update. For those who have already installed the 6.0.3 update and use Office 2004 for Mac, we will post any additional steps that may be necessary to reapply this update,” Adobe says.

Adobe Acrobat Updates Broken

Adobe Acrobat Updates Broken 03/14/2005 05:34 PM

Adobe Unveils Acrobat 7.0 (NewsFactor)

Adobe Unveils Acrobat 7.0 (NewsFactor) 01/06/2005 04:39 PM
NewsFactor - Adobe Systems (Nasdaq: ADBE) is delivering the latest iteration of its Acrobat software for creating PDF files and also is introducing a new reader that includes a beta version for the Linux operating system.

Adobe Smotthes Kinks In Acrobat

Adobe Smotthes Kinks In Acrobat 12/17/2004 06:27 PM

Adobe issued an updated version of Acrobat for the Windows and Macintosh OS X platforms this week, fixing three security holes that could be used to compromise a user's system. By Robert Lemos, CNET News.com

Adobe Targets Enterprise with Acrobat 7

Adobe Targets Enterprise with Acrobat 7 12/28/2004 05:31 PM
Pam Deziel, director of Acrobat product marketing at Adobe, speaks out about the latest version of Acrobat and its integration with Adobe's server products.

Adobe Acrobat Toolbar Worse than
Malware?

Adobe Acrobat Toolbar Worse than
Malware? 03/23/2005 04:48 PM
Slashdot Mar 23 2005 7:59PM GMT

Adobe takes Acrobat Elements to the
server

Adobe takes Acrobat Elements to the
server 11/18/2003 08:11 AM
Computer Weekly Nov 18 2003 7:25AM ET

Adobe Acrobat 6.0: Getting Professional
Results from Your PDFs

Adobe Acrobat 6.0: Getting Professional
Results from Your PDFs 05/27/2004 01:46 AM
If you want to connect an Acrobat batch sequence to another program, you have to use platform-specific scripting languages. In Windows, you can use Visual Basic to control Acrobat, and use batch sequences to run operations inside of Acrobat. In MacOS, you would use AppleScript instead of Visual Basic.

Adobe Acrobat & PDF Conference 2004
announced

Adobe Acrobat & PDF Conference 2004
announced 12/16/2003 12:34 PM
The Adobe Acrobat & PDF Conference will be held April 22-23, 2004 at Disney's Coronado Springs Resort in Orlando, Florida...

Adobe adds server version of Acrobat

Adobe adds server version of Acrobat 11/17/2003 12:54 AM
The software maker announces a server-based version of its set of applications for creating files in the widespread Portable Document Format.

Earnings alert: Acrobat lifts Adobe

Earnings alert: Acrobat lifts Adobe 03/13/2003 07:25 PM
The software maker sees higher sales, profit...TiVo doubles revenue in the fourth quarter...Homestore posts narrower loss.

Adobe temporarily pulls Acrobat update
for Mac

Adobe temporarily pulls Acrobat update
for Mac 12/19/2004 03:11 PM
Adobe Systems Inc. has temporarily removed the 6.0.3 update for Professional and Standard versions of its Acrobat software for the Macintosh platform.

Adobe Locks Down PDFs, Releases Acrobat
7.0

Adobe Locks Down PDFs, Releases Acrobat
7.0 01/06/2005 02:33 AM
Information Week Jan 6 2005 5:22AM GMT
Grok Description matches for Adobe Acrobat Reader PDF file DoS vulnerability
GrokA matches for Adobe Acrobat Reader PDF file DoS vulnerability

Adobe Acrobat Reader PDF file DoS vulnerability

The following phrases have been identified by the grok system as matching this entry: