Acrobat, Adobe Reader & Flash updated for critical security fixes
In response to two critical vulnerabilities in Acrobat and Adobe Reader 9.3, yesterday Adobe released the 9.3.1 update for both applications; users of the older 8.x versions can update to 8.2.1 to resolve the security issues. One of the two vulnerabilities addressed would allow a malicious PDF to make unauthorized cross-domain requests; the other could crash the PDF application and possibly allow an attacker to gain access to other parts of the system. The first flaw is related to a Flash Player issue that was revealed last week; if you have not updated Flash to the latest version (10.0.45.2 as of this moment, see your version & current versions here) & you aren't blocking Flash, you should go get the latest build right away. Although you can configure auto-update notifications in Flash Player, it's not clear if Mac OS X clients are consistently getting these reminders to update.
Even though Mac users are far less likely to be targeted by malware than our Windows-using friends and family, vigilance is still critical. Security analysis firm ScanSafe reported that it saw the percentage of exploits delivered via PDF files rise from 56% at the beginning of 2009 all the way up to 80% in the 4th quarter, so keeping those Adobe apps current -- or, better yet, using Apple's Preview app as the default PDF reader on Mac OS X -- is only prudent.
Share
In response to two critical vulnerabilities in Acrobat and Adobe Reader 9.3, yesterday Adobe released the 9.3.1 update for both...
Add a Comment
I wonder how this will affect the Talkshoe experience...
February 17 2010 at 8:36 PM Report abuse Permalink rate up rate down ReplyHmpf. Can't find 9.3.1 anywhere. Running update within Adobe Reader 9.3, all it finds is the 9.3.0 update. Adobe bollocks up again.
February 17 2010 at 3:30 PM Report abuse Permalink rate up rate down ReplyI got it no problem. Kick your computer and try again ;-)
February 17 2010 at 8:38 PM Report abuse Permalink rate up rate down ReplyJust turn off Adobe JavaScript Support in Adobe Reader and you will NOT be exposed to any security vulnerabilities!!
To date, I have never seen a PDF document that has javascript embedded in it.
And it STILL crashes when you go to http://flashcrash.dempsky.org !
February 17 2010 at 1:53 PM Report abuse Permalink rate up rate down ReplyI'v been getting this message since yesterday afternoon whenever I do a check for updates in Reader 9.3. I did the suggested verification and was indeed connected to the Internet.
Cannot connect to Adobe update server. Please verify that you are connected to the Internet and check for updates again.
Error: 1001
ain't download to update. What if it force me to use annoying acrobat on web browser? It loading awful. I'm stick with Preview.
February 17 2010 at 1:10 PM Report abuse Permalink rate up rate down ReplyI could run the Adobe Reader update. It presents a finder dialog requesting that you point to the installed Reader to update. However, the dialog only allows you to select folders (all non-folders are greyed-out) and the OK button is always greyed-out.
Is anyone else having this problem?
In my experience, Apple's Preview is much faster in loading PDFs as well as being apparently a bit more hermetic. I enjoy using various Adobe products (even Acrobat Pro), but find them a bit sluggish in load times.
February 17 2010 at 12:48 PM Report abuse Permalink rate up rate down Reply@Jordan: Are you sure he did not mean compare Apple Preview with Adobe Acrobat Reader? They are both viewers, but I find Apple Preview much faster of the two.
February 17 2010 at 5:31 PM Report abuse Permalink rate up rate down ReplyHot Apps on TUAW
Deals of the Day
more deals- Used Apple iMac 17" Core 2 Duo 1.83GHz for $430 + $28 s&h
- Lounge Deluxe Stand for iPhone / iPod touch for $28 + $8 s&h
- Brookstone Surround-Sound Earbuds for $14 + $7 s&h
- Refurbished Skullcandy Tokidoki Smokin' Buds Mic'd Headset for $5 + $2 s&h
- Stitchway Backup Battery for iPod / iPhone for $5 + free shipping
- Used Apple MacBook Pro 2.4GHz 15" LED Laptop for $1,030 + $29 s&h
Software Updates
more updates- EFI Firmware Update brings Lion Internet Recovery to 2010-model Macs
- OS X Lion 10.7.3 released with Safari 5.1.3, Wi-Fi bug fix
- Aperture updated to 3.2.2, addresses Photo Stream issue
- Apple updates Keynote to address Lion issues
- Google Search app gets new look on iPad
- Apple releases Apple TV Software Update 4.4.3
Featured Stories
more stories
Popular Stories
TUAW (or The Unofficial Apple Weblog) is a website devoted to tips, reviews, news, analysis and opinion on everything Apple.
10 Comments