Monday, June 8, 2009

Adobe Patch Tuesday for June 09

Update June 9, 6:55 PM - Adobe has released their security bulletin - mercifully it's only one item, APSB09-07, that is associated with 13 CVEs for Adobe Reader and Acrobat. The bad news is that the bulletin calls out that the fixes for the UNIX platform won't be out for another ten days, which gives the bad guys a good amount of time to reverse-engineer the vulnerabilities from the Windows and Mac code and create exploits for the UNIX world.

Original Post - Don't forget that June 9 will be Adobe's first foray into releasing patch bundles in a Microsoft-esqe manner, although Adobe plans to go the quarterly route rather than the monthly bulletins that come out of Redmond.

A number of the patches will be rated as Critical by Adobe, which typically means that malicious code can be executed without user interaction, so you'll want to stay tuned and fix those ASAP.

Experts are anticipating fixes for Acrobat Reader and Adobe Acrobat, for both Windows and Mac platforms. Details are still to come for fixes for those products on the UNIX operating system.


If you're not already using some other PDF viewer, you should be. You'll be surprised at how much faster it will load and render compared to Adobe Reader, and it's not nearly the attack vector, either.



No comments:

Post a Comment

Please tell me what you think.