If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. |
|
|
Thread Tools | Display Modes |
#1
|
|||
|
|||
vulnerability found in Adobe PDF reader
I promise I will not become one of those annoying people who forwards
every known or assumed security risk announcement I come across, but... ....being that this comes from a reliable source, and it potentially places 61% of all Windows users into a security risk, I thought I would also pass this to our group. PDF World Update ================================================== ======= 1. Adobe Ships Silent Fix for Critical PDF Reader Flaw Adobe patched a gaping code execution hole in Reader but, inexplicably, has issued no public documentation on the risk severity. http://www.eweek.com/c/a/Security/Ad...ZPDFEMNL021208 Art |
#2
|
|||
|
|||
vulnerability found in Adobe PDF reader
Arthur Entlich wrote:
I promise I will not become one of those annoying people who forwards every known or assumed security risk announcement I come across, but... ...being that this comes from a reliable source, and it potentially places 61% of all Windows users into a security risk, I thought I would also pass this to our group. PDF World Update ================================================== ======= 1. Adobe Ships Silent Fix for Critical PDF Reader Flaw Adobe patched a gaping code execution hole in Reader but, inexplicably, has issued no public documentation on the risk severity. http://www.eweek.com/c/a/Security/Ad...ZPDFEMNL021208 Art Hmmm. No mention of a comparable fix for the Linux version of Adobe Reader 8. Must be it's not needed because the vulnerability is tied to Internet Explorer, and there is no Linux version of IE - something for which all Linux users should be profoundly grateful. Firefox is a much better browser, anyway. TJ |
#3
|
|||
|
|||
vulnerability found in Adobe PDF reader
They don't mention if it is a vulnerability or not for Linux, just that
no patch was made for Adobe Reader. The fact that they offer patches for current Windows OSs and the current version of Mac OS doesn't mean that it isn't a Linux issue, just that they haven't offered a patch for it (yet?). Or maybe they never made the updated version for Linux at all and therefore didn't require to fix it? They don't mention Windows 98 either, but that doesn't mean it isn't vulnerable, maybe they just never produced an Adobe Reader with the flaw for it. Art TJ wrote: Arthur Entlich wrote: I promise I will not become one of those annoying people who forwards every known or assumed security risk announcement I come across, but... ...being that this comes from a reliable source, and it potentially places 61% of all Windows users into a security risk, I thought I would also pass this to our group. PDF World Update ================================================== ======= 1. Adobe Ships Silent Fix for Critical PDF Reader Flaw Adobe patched a gaping code execution hole in Reader but, inexplicably, has issued no public documentation on the risk severity. http://www.eweek.com/c/a/Security/Ad...ZPDFEMNL021208 Art Hmmm. No mention of a comparable fix for the Linux version of Adobe Reader 8. Must be it's not needed because the vulnerability is tied to Internet Explorer, and there is no Linux version of IE - something for which all Linux users should be profoundly grateful. Firefox is a much better browser, anyway. TJ |
#4
|
|||
|
|||
vulnerability found in Adobe PDF reader
TJ wrote: Arthur Entlich wrote: I promise I will not become one of those annoying people who forwards every known or assumed security risk announcement I come across, but... ...being that this comes from a reliable source, and it potentially places 61% of all Windows users into a security risk, I thought I would also pass this to our group. PDF World Update ================================================== ======= 1. Adobe Ships Silent Fix for Critical PDF Reader Flaw Adobe patched a gaping code execution hole in Reader but, inexplicably, has issued no public documentation on the risk severity. http://www.eweek.com/c/a/Security/Ad...ZPDFEMNL021208 Art Hmmm. No mention of a comparable fix for the Linux version of Adobe Reader 8. Must be it's not needed because the vulnerability is tied to Internet Explorer, and there is no Linux version of IE - something for which all Linux users should be profoundly grateful. Firefox is a much better browser, anyway. TJ You have said many things in the past and when I told you that you were incorrect you still debated. Now you say: QUOTE and there is no Linux version of IE ENDQUOTE I have run IE under Linux. I only use it as an emergency. I cannot remember if it is running true native or under its own version of wine line Picasa. |
#5
|
|||
|
|||
vulnerability found in Adobe PDF reader
measekite wrote:
TJ wrote: Hmmm. No mention of a comparable fix for the Linux version of Adobe Reader 8. Must be it's not needed because the vulnerability is tied to Internet Explorer, and there is no Linux version of IE - something for which all Linux users should be profoundly grateful. Firefox is a much better browser, anyway. TJ You have said many things in the past and when I told you that you were incorrect you still debated. Now you say: QUOTE and there is no Linux version of IE ENDQUOTE I have run IE under Linux. I only use it as an emergency. I cannot remember if it is running true native or under its own version of wine line Picasa. And I'll debate now, too. What makes you think I'd ever decide I was wrong just because you tell I am? Sigh. What arrogance! If you ran IE under Linux, you were using wine, Crossover Office, or Win4Lin. All are Windows emulators of one sort or another. There is no version of IE written for Linux, period. At least, none that's ever been released by Microsoft. Check with Microsoft, if you don't believe me. I can't imagine what sort of "emergency" would cause you to run IE under Linux. The only reason I can possibly think of is if you run into a website that won't work with anything else - and there are a few, but getting fewer all the time - and I wouldn't classify that as an "emergency." TJ |
#6
|
|||
|
|||
vulnerability found in Adobe PDF reader
Arthur Entlich wrote:
They don't mention if it is a vulnerability or not for Linux, just that no patch was made for Adobe Reader. The fact that they offer patches for current Windows OSs and the current version of Mac OS doesn't mean that it isn't a Linux issue, just that they haven't offered a patch for it (yet?). Or maybe they never made the updated version for Linux at all and therefore didn't require to fix it? They don't mention Windows 98 either, but that doesn't mean it isn't vulnerable, maybe they just never produced an Adobe Reader with the flaw for it. Adobe Reader 6.x is the last that will work with Windows 98, and like most other Windows 98 software, it's no longer supported. The way I read the article, the root flaw is with IE. Adobe Reader just allows somebody to take advantage of it. TJ |
#7
|
|||
|
|||
vulnerability found in Adobe PDF reader
In article osAsj.35400$FA.24846@pd7urf2no, Arthur Entlich wrote:
PDF World Update ================================================= ======== 1. Adobe Ships Silent Fix for Critical PDF Reader Flaw Adobe patched a gaping code execution hole in Reader but, inexplicably, has issued no public documentation on the risk severity. This is not surprising. Whenever you have 22MB of bloatware there's bound to be a few problems. I've been using Foxit reader which is 1/10 the size, loads more than 10 times as fast, and doesn't come with any bundled security holes. I ditched the Adobe stuff a long time ago and haven't looked back since. |
#8
|
|||
|
|||
vulnerability found in Adobe PDF reader
"Arthur Entlich" wrote in message newssAsj.35400$FA.24846@pd7urf2no... I promise I will not become one of those annoying people who forwards every known or assumed security risk announcement I come across, but... ...being that this comes from a reliable source, and it potentially places 61% of all Windows users into a security risk, I thought I would also pass this to our group. PDF World Update ================================================== ======= 1. Adobe Ships Silent Fix for Critical PDF Reader Flaw Adobe patched a gaping code execution hole in Reader but, inexplicably, has issued no public documentation on the risk severity. http://www.eweek.com/c/a/Security/Ad...ZPDFEMNL021208 Art Art - immediately after I read this post Adobe auto-updated my Adobe Reader program. |
#9
|
|||
|
|||
vulnerability found in Adobe PDF reader
They've been watching me ;-0
Art Burt wrote: "Arthur Entlich" wrote in message newssAsj.35400$FA.24846@pd7urf2no... I promise I will not become one of those annoying people who forwards every known or assumed security risk announcement I come across, but... ...being that this comes from a reliable source, and it potentially places 61% of all Windows users into a security risk, I thought I would also pass this to our group. PDF World Update ================================================ ========= 1. Adobe Ships Silent Fix for Critical PDF Reader Flaw Adobe patched a gaping code execution hole in Reader but, inexplicably, has issued no public documentation on the risk severity. http://www.eweek.com/c/a/Security/Ad...ZPDFEMNL021208 Art Art - immediately after I read this post Adobe auto-updated my Adobe Reader program. |
#10
|
|||
|
|||
vulnerability found in Adobe PDF reader
TJ wrote: measekite wrote: TJ wrote: Hmmm. No mention of a comparable fix for the Linux version of Adobe Reader 8. Must be it's not needed because the vulnerability is tied to Internet Explorer, and there is no Linux version of IE - something for which all Linux users should be profoundly grateful. Firefox is a much better browser, anyway. TJ You have said many things in the past and when I told you that you were incorrect you still debated. Now you say: QUOTE and there is no Linux version of IE ENDQUOTE I have run IE under Linux. I only use it as an emergency. I cannot remember if it is running true native or under its own version of wine line Picasa. And I'll debate now, too. What makes you think I'd ever decide I was wrong just because you tell I am? Sigh. What arrogance! If you ran IE under Linux, you were using wine, Crossover Office, or Win4Lin. All are Windows emulators of one sort or another. There is no version of IE written for Linux, period. At least, none that's ever been released by Microsoft. Check with Microsoft, if you don't believe me. I can't imagine what sort of "emergency" would cause you to run IE under Linux. A website I needed was using certain code that did not run properly with Firefox. Now that has been changed but for a short time I had to us IE for Linux. And I did tell you it ran may have run under wine. The only reason I can possibly think of is if you run into a website that won't work with anything else - and there are a few, but getting fewer all the time - and I wouldn't classify that as an "emergency." If you needed it is can be classed as an emergency. The other choice was to boot Windows. This ran seamlessly. TJ |
Thread Tools | |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Adobe Reader 7 | Norm[_3_] | Dell Computers | 20 | June 17th 07 09:09 PM |
OT--Adobe Reader Updates -- necessary?? | MZB | Dell Computers | 9 | July 13th 06 12:11 AM |
Can't Get Rid of Adobe Reader | Dick | Dell Computers | 4 | June 17th 06 03:38 PM |
What Disk Contains Adobe Reader? | Dick | Dell Computers | 18 | June 13th 06 06:14 PM |
COMMENTS WON'T PRINT IN READER 6.02{ADOBE} | Gel | Printers | 0 | August 29th 04 08:43 AM |