05/01/2007
Adobe Reader security flaw discovered
Adobe Reader software users are being urged to urgently update their software to version 8 following the discovery of a potentially serious security flaw.
The problem relates to the way that the older versions of Adobe Reader browser allow parameters to be sent to the program when opening a .pdf file - a feature that could be exploited maliciously.
This development is viewed as significant, in particular for the relative ease in which this weakness can be exploited. Use of this “feature” requires no exploitation of vulnerabilities on the server side.
In addition, according to computer security experts, any website that hosts a .pdf file can be used to conduct this form of attack, which due to the power and flexibility of JavaScript has the potential to inflict serious damage.
Experts reported that the problem appeared to be limited to the Firefox browser, but other browser software, including Internet Explorer, are vulnerable.
Computer systems managers are being urged to implement JavaScript filtering capabilities on corporate firewalls and intrusion detection systems, and to disable Adobe Reader plugin capabilities in web browsers.
Also any unsolicited files with links to .pdf files on the web should be treated as suspicious.
Upgrading to Adobe Reader version 8 will remove the security weakness.
(SP/KMcA)
The problem relates to the way that the older versions of Adobe Reader browser allow parameters to be sent to the program when opening a .pdf file - a feature that could be exploited maliciously.
This development is viewed as significant, in particular for the relative ease in which this weakness can be exploited. Use of this “feature” requires no exploitation of vulnerabilities on the server side.
In addition, according to computer security experts, any website that hosts a .pdf file can be used to conduct this form of attack, which due to the power and flexibility of JavaScript has the potential to inflict serious damage.
Experts reported that the problem appeared to be limited to the Firefox browser, but other browser software, including Internet Explorer, are vulnerable.
Computer systems managers are being urged to implement JavaScript filtering capabilities on corporate firewalls and intrusion detection systems, and to disable Adobe Reader plugin capabilities in web browsers.
Also any unsolicited files with links to .pdf files on the web should be treated as suspicious.
Upgrading to Adobe Reader version 8 will remove the security weakness.
(SP/KMcA)
Related UK National News Stories
Click here for the latest headlines.
14 June 2010
Adobe's 'Critical' Flash Flaw Fixed
A 'critical' security flaw that allowed hackers to take control of affected computer systems has now been addressed by Adobe. The small number of targeted attacks was first detected in early June. The Flash and Reader software were mainly to blame as the prime targets for computer savvy criminals.
Adobe's 'Critical' Flash Flaw Fixed
A 'critical' security flaw that allowed hackers to take control of affected computer systems has now been addressed by Adobe. The small number of targeted attacks was first detected in early June. The Flash and Reader software were mainly to blame as the prime targets for computer savvy criminals.
07 November 2014
Arrest Made In Baby Knife Threat Burglary
Police investigating a burglary in which a man threatened a 15-month-old baby with a knife have made an arrest. A man posing as a metre reader gained access to the home of a 31-year-old woman in Uxbridge on 31 October. Once inside the house the man produced a knife and threatened the woman's baby daughter, demanding to know where she kept the gold.
Arrest Made In Baby Knife Threat Burglary
Police investigating a burglary in which a man threatened a 15-month-old baby with a knife have made an arrest. A man posing as a metre reader gained access to the home of a 31-year-old woman in Uxbridge on 31 October. Once inside the house the man produced a knife and threatened the woman's baby daughter, demanding to know where she kept the gold.
27 November 2003
New measures to curb 'abuse' of asylum legal aid
New measures aimed at cutting out abuses of the asylum legal aid system could save the taxpayer around £30 million next year, the government has claimed.
New measures to curb 'abuse' of asylum legal aid
New measures aimed at cutting out abuses of the asylum legal aid system could save the taxpayer around £30 million next year, the government has claimed.
05 September 2014
Barclays Launches Biometric Meter To Combat Fraud
Barclays is combating identity fraud for UK firms with its new Biometric Reader. By simply scanning their finger, clients will be able to easily access their online bank accounts and authorise payments within seconds, without the need for PIN, passwords or authentication codes.
Barclays Launches Biometric Meter To Combat Fraud
Barclays is combating identity fraud for UK firms with its new Biometric Reader. By simply scanning their finger, clients will be able to easily access their online bank accounts and authorise payments within seconds, without the need for PIN, passwords or authentication codes.
19 February 2004
Beagle.B virus linked to online gamers
Yet another Microsoft Windows worm is about to start e-dropping into computer users mailboxes. Beagle.B is triggered when a user attempts to open the attachment on an email. This then runs malicious code that not only harvests email addresses from Outlook, but sends information about an online computer to a number of German website addresses.
Beagle.B virus linked to online gamers
Yet another Microsoft Windows worm is about to start e-dropping into computer users mailboxes. Beagle.B is triggered when a user attempts to open the attachment on an email. This then runs malicious code that not only harvests email addresses from Outlook, but sends information about an online computer to a number of German website addresses.
-
Northern Ireland WeatherToday:A sunny but frosty start for many. However cloud increases by midday with a few showers reaching the north coast, these mostly light but spreading inland this afternoon. Chilly. Maximum temperature 8 °C.Tonight:A rather cloudy evening with scattered showers. Becoming drier through the night with some good clear spells developing and a patchy frost away from coasts. Minimum temperature 0 °C.