DocuCrunch.com » vulnerability http://www.docucrunch.com Just another WordPress weblog Sun, 27 Nov 2011 20:23:35 +0000 en hourly 1 http://wordpress.org/?v=3.2.1 Adobe bug won’t be patched until Jan. 12 http://www.docucrunch.com/adobe-bug-wont-be-patched-until-jan-12 http://www.docucrunch.com/adobe-bug-wont-be-patched-until-jan-12#comments Mon, 28 Dec 2009 11:00:48 +0000 Sam Narisi http://www.docucrunch.com/?p=2340 A bug has been found in Adobe Acrobat and Reader, but the company says it won’t be patched for another few weeks. What should you do in the meantime?

The flaw can cause a crash and may allow an attacker to take control of the affected system. There are reports the bug is being actively exploited, Adobe said in a security advisory.

A patch won’t be released until January 12, which is when the next regular security update is scheduled.

In the meantime, Adobe says customers using Adobe Reader or Acrobat versions 9.2 or 8.1.7 can utilize the JavaScript Blacklist Framework to prevent this vulnerability.

Other users can mitigate the risk by disabling JavaScript in Acrobat and Reader. Instructions:

  1. Launch Acrobat or Adobe Reader.
  2. Select Edit>Preferences
  3. Select the JavaScript Category
  4. Uncheck the “Enable Acrobat JavaScript” option
  5. Click OK
]]> http://www.docucrunch.com/adobe-bug-wont-be-patched-until-jan-12/feed 0