There is a big problem in the way ADOBE pdf readers work. Basically, the flaw causes a fault that allows a hacker to install spyware or worse on your computer. It's bad, and already being used by hackers.

The 2 biggest problems with this one are:

1) The current antivirus programs DON'T detect it, even if you have weekly updates on the detection pattern files.

2) It will be March 11 before Adobe fixes the problem in the most current adobe reader/acrobat stuff, but many people are using older versions of reader, and those fixes are 'shortly afterwards'. That's probably at least 1 week later, and of course, who is going to know they have to update it?

I would be extremely careful of any pdf's sent.

Details at:
http://www.adobe.com/support/security/advisories/apsa09-01.html


Be VERY VERY careful of this one- since everyone uses PDF's. It could quickly find it's way into many businesses.

Thanks. Yike.

Eh. I'll switch back to Foxit or Xpdf. :tongue

Thanks Darryl. Good to know.

I'm glad I never use Adobe. It's Foxit for me.

Well, darn. I didn't know this but I needed to. I'll look into foxit.

Meanwhile (and for IE users) -- if you can get your link to show in a google search page, there's an html option that allows bypassing Adobe Reader.

Evince is good, but it's *nix only. It also reads .ps and .dvi.

Buffer overflow issue...
Geez, is Adobe full of former Microsoft programmers?

Believe it or not, Microsoft does not hold a patent on security holes.

Believe it or not, Microsoft does not hold a patent on security holes.
That is a big relief. Any word on whether this virus attacks Macs? My understanding has been that no virus can attack both systems, which is why Macs are innoculated.

That is a big relief. Any word on whether this virus attacks Macs? My understanding has been that no virus can attack both systems, which is why Macs are innoculated.

Technically, this isn't a virus. :)

From the security bulletin above, it affects all platforms using the Adobe Reader/Acrobat software.

Be very careful, folks. As always, be careful opening files from untrusted sources (a bit like eating a piece of candy found lying in the street -- it may look good but you don't know where it's been).

Technically, this isn't a virus. :)

From the security bulletin above, it affects all platforms using the Adobe Reader/Acrobat software.

Be very careful, folks. As always, be careful opening files from untrusted sources (a bit like eating a piece of candy found lying in the street -- it may look good but you don't know where it's been).

Right, it's not a virus. More like a crowded hospital waiting room.

Thanks for the heads up. I'll use Preview. Faster anyway.

I wonder how long this has been an issue. I think I'm misunderstanding the problem, though. In order for any harm to be done, they would have to install more spyware/baddies onto your computer, right? Most of which would be detectable. So I suppose that's a relief.

Yay for Preview.

I use FoxIt Reader (http://www.foxitsoftware.com/pdf/rd_intro.php), I got tired of Adobe crashing my browser each time I accidentally opened a pdf on line.

This is very light and there are versions that don't even require installation.

Just bumping this thread, the fix is out, get your Acrobat reader (looks like they just call it Adobe Reader now ...) version 9.1 here:
http://get.adobe.com/reader/

This slashdot (okay, now you all know just how nerdy I am...) article from yesterday reminded me of it:
http://it.slashdot.org/article.pl?sid=09/03/11/1722236

Thanks for the information.