fwaggle.org

If you haven’t already done so, this would be a really good idea. A “0-Day” was released a few days back for Adobe Reader, which allows one to write a malicious .pdf file to put a payload of malware on your computer. Adobe have been dragging their feet in fixing this, and of course the assholes out there have to put it to work when given an opportunity.

Basically, you open a malicious .pdf, and you have malware on your PC. A site my wife went to had one in a popup, and she’s probably spending the next hour or two cleaning up the mess. The solution is pretty simple:

1. Open Adobe Reader in standalone mode (from the Start Menu).
2. Under the Edit menu, click Preferences.
3. Find the Javascript tab or category.
4. Uncheck “Enable Javascript in Adobe” or “Enable Acrobat Javascript“.
5. Click OK.

Adobe Reader 9 is supposed to be updated the 11th, and versions 7 and 8 are getting theirs the 18th.

Tags: oops

This entry was posted on Sunday, March 1st, 2009 at 1:40 pm and is filed under Internet. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.