PDF/Email Security Alert

Adobe Security AlertPleth would like to notify its Plethware customers that Chris Foreman has reported a a security bulletin issued by Adobe. This issue affects versions 7-9 of Adobe Acrobat and Reader. While Pleth is unaware that this exploit has affected any of it's customers we are advising that PDF's emailed from unknown senders be treated with suspicion. An advising IT professional has reported seeing a single instance of this exploit locally. It is anticipated that many IT departments may restrict the delivery of PDFs until a patch is delivered by Adobe.

Adobe has identified a critical security vulnerability in all recent versions of Acrobat and Reader, the company's software for creating and viewing files in portable document format, on all platforms, including Windows, Linux, and Mac OS X.

A buffer overflow issue in versions 7, 8, and 9 of Acrobat, Acrobat Pro, and Acrobat Pro Extended, as well as versions 7, 8, and 9 of the free Adobe Reader can cause crashing, and can also be exploited to take control of a users system. Adobe has received reports that exploits are already in the wild.

Adobe has engineers hard at work on the problem, though the company does not expect a fix for version 9 of Acrobat or Reader until March 11, with fixes for the older versions to follow at a later date. The company is also working with anti-virus vendors to identify exploits using the buffer overflow.

About the Author

Stephen "Kegal" Smart

Also known as 'Kegal' is our loveable number cruncher. He handles the business aspects of Pleth. Kegal is also a pilot and a huge family man. As a lifelong Cubs fan, Kegal loves a good ball game! If there's ever a question about your account with Pleth, he's got the answers!

Skype

My status

Tweets @skspilot

Kegal Smart