CERT mailing list archives
Current Activity - Adobe Releases Guidance for Launch Functionality Mitigation in Acrobat and Reader
From: Current Activity <us-cert () us-cert gov>
Date: Wed, 7 Apr 2010 11:30:54 -0400
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 US-CERT Current Activity Adobe Releases Guidance for Launch Functionality Mitigation in Acrobat and Reader Original release date: April 7, 2010 at 11:07 am Last revised: April 7, 2010 at 11:07 am Adobe has released a blog entry addressing a vulnerability in Acrobat and Reader. This vulnerability exists due to the way in which Adobe Acrobat and Adobe Reader handle launch actions embedded in PDFs. When users open a PDF that contains a launch action, they are presented with a dialog box warning the user that a file and its viewer application are set to be launched by the PDF file. The dialog box asks users if they want to continue opening the file and displays the name of the file to be opened. An attacker may be able to manipulate the content in the file name section of the dialog box in an attempt to convince users to open the file. By default, the dialog is set to select the option to continue opening the file. This default configuration and the option to disable the warning message for future launch actions makes it very easy for users to bypass this security mechanism. Opening a PDF containing malicious launch actions may result in arbitrary code execution. US-CERT encourages users and administrators to review the Adobe Reader blog entry related to this issue and apply the guidance provided in the entry to help mitigate some of the risks. US-CERT will provide additional information as it becomes available. Relevant Url(s): <http://blogs.adobe.com/adobereader/2010/04/didier_stevens_launch_function.html> ==== This entry is available at http://www.us-cert.gov/current/index.html#adobe_releases_guidance_for_launch -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iQEVAwUBS7ylHz6pPKYJORa3AQKv5QgAr+lptzGJ06G5DUALoWsU/3akwG9lTdXN XYbUStBFzE7Zi88S6YTMDfeeIR3Bz3cTqOPz+ADEbAl29OCZvcg5YZ+aabXuxNpR XguQatkflTMnCFhr9GGoCxk9nSzo9K5xlWaRfZ0obOmdCDwHk6SQVjSH4jhMXhH8 7HiPjTq/Ryu548Qu4bRn2RAXohoUhLMGUiCExr1iakuvvZDRLh/l/U37rDS6KbqX j1ttWfIbthm5eXbyb8+BPAieJDsQvS3Dmo08QSTLgjJTwIyrjtRq9Rr+5fTeOZM9 B2sy4DyyNCv+GZfQp5cYul2BeyyiBBUJTi6dW0jKCQ5PFbjeqBlNmw== =YmDL -----END PGP SIGNATURE-----
Current thread:
- Current Activity - Adobe Releases Guidance for Launch Functionality Mitigation in Acrobat and Reader Current Activity (Apr 07)