http://www.sqlservercentral.com/blogs/brian_kelley/2009/02/20/adobe-acrobat-reader-0day-disable-javascript/

Printed 2014/04/16 06:56PM

Adobe Acrobat/Reader 0day - Disable JavaScript

2009/02/20

There is an active attack in the wild for the newly announced Adobe Acrobat and Adobe Reader vulnerability. While the attack isn't widespread, there is always the possibility of copycat attacks. One of the recommended suggestions is really easy to do, so I'm posting it here, and that's to disable JavaScript from within the Adobe application. For instance, with Adobe Reader 9, if you select Edit | Preferences, you'll bring up a dialog menu, one of the options of which is JavaScript. If you click on it,you'll have the option of disabling JavaScript within Adobe Reader. To do so, uncheck the box as show here:

 

 Adobe Reader 9 - Disable JavaScript

Right now there's not a patch out, but this is one way to minimize your exposure which shouldn't drastically affect productivity. Adobe has said they'll have a patch for the version 9 builds of these applications by March 11, 2009, with patches for versions 8 and 7 to follow afterwards.

 


Copyright © 2002-2014 Simple Talk Publishing. All Rights Reserved. Privacy Policy. Terms of Use. Report Abuse.