Adobe: Hang Tight, We'll Fix Things Next Month
Adobe: Hang Tight, We'll Fix Things Next Month
Posted 12/17/2009 at 5:18am
| by Paul Lilly
5
Comments
Print
The other day, Adobe announced it had discovered a vulnerability in its Adobe Reader and Acrobat 9.2 and earlier versions being exploited in the wild, and assured users the company was investigating the issue. The good news is that Adobe's security team has finished the investigation. And the bad news? You'll have to wait until at least January 12, 2010 -- the targeted ship date -- to receive a patch.
According to Adobe, it considering stopping everything else and working immediately on an out-of-cycle security update with a one-off fix, but because that would still take between two and three weeks, doing so would knock off the timing of its next planned quarterly security update. So instead the fix will be rolled into the code branch for the next quarterly update.
But don't worry, says Adobe, because introduced in Adobe Reader and Acrobat versions 9.2 and 8.1.7 with the quarterly update in October is a JavaScript Blacklist mitigation feature. This allows "administrators of larger enterprise managed desktop environments to easily disable access to individual JavaScript APIs."
Foxit, anyone?
More like this
ogremustcrush
December 17, 2009 at 12:23pm
I can't say I really want to use any pdf program anymore, most things I just view with the Google PDF viewer. It loads about as quick as Adobe or Foxit, plus since it isn't a plugin but simply a webpage, it doesn't cause your browser to lock up while loading a large pdf like reader and foxit are known to do.
Quakindude
December 17, 2009 at 10:34am
LOL! Go figure. Adobe taking their time about security! Say it isn't so!
I switched all of my PC's, and at least a hundred others, over to Foxit a long time ago. But even Foxit is starting to become bloated. In another two years, we MaxPC types will be looking for the next simple PDF reader.
MaximumPC Moderator
***The views I express are my own and do not represent the views of MaximumPC Magazine or Future US.***
nekollx
December 17, 2009 at 9:26am
Acrowhatshit? Is that some spin of of Foxit PDF reader?
------------------------------
Coming soon to Lulu.com --Tokusatsu Heroes--
Five teenagers, one alien ghost, a robot, and the fate of the world.
Number Six
December 17, 2009 at 6:54am
99.9% of us can get by without Javascript in Acrobat, so just play it safe and disable the feature from withing Acrobat/Acrobat Reader.
Stupid Symantec still doesn't flag the exploit code (which I saved to my desktop) even with the latest definitions. :(
-Six
Connect with MaximumPC
Featured Content
We introduce Intel's latest class of tablet killers and review 4 of the first Ultra...
Where have all the memorable videogame enemies gone?
This month's issue
Feature
11 Hardware Hacks
Feature
Overclock Your CPU
How-To
Supercharge Your Smartphone
Build It
A Powerful $830 Rig
Most Commented Articles
Latest Max PC Tweets
- maximumpc: Multi-Monitor Usage On The Rise http://t.co/eWfJfCEG10 hours 41 min ago
- maximumpc: Windows 8 Consumer Preview Coming On February 29 http://t.co/3Nd04FdR16 hours 29 min ago
- maximumpc: Can RIM *ever* catch a break? Not today! App World numbers not as great as previously reported http://t.co/3ERRhr311 day 12 hours ago
