Xanda's Blog !~!

About

Home ▶
Archives

Yet Another Adobe Bug

IT Related
0day | acrobat | adobe | clientside | CVE-2009-3459 | javascript | pdf

Nothing much but YES to agree with Didier Stevens with his statement:

PDF + JS = OMG

Yerp.. there is another vulnerability (CVE-2009-3459) in Adobe Reader and Acrobat today (GMT +8) and so far it is still 0 day..

*panic panic* What to do?

Disable JavaScript support in Adobe Reader and Acrobat
Enable DEP (for Windows)
Use NoScript
Use alternative PDF reader like Foxit, Gnome Document Viewer, yada yada..
Don’t be a lame by opening unknown PDF attachment

09/10/2009
xanda
0 comments

Copyrights Xanda's Blog !~! © All Rights Reserved.
Simplenotes by Carla Izumi Bamford