Adobe is releasing an out-of-cycle patch for Adobe Reader and Adobe Acrobat today to patch a vulnerability for iPod Touches, iPads and iPhones.
The patch will affect all operating systems, not just Apple products. The next scheduled release of Adobe patches was October 12th, but due to the critical nature of this vulnerability Adobe is releasing the patch early.
From the Adobe Security Bulletin:
Adobe is planning to release updates for Adobe Reader 9.3.3 for Windows, Macintosh and UNIX, Adobe Acrobat 9.3.3 for Windows and Macintosh, and Adobe Reader 8.2.3 and Acrobat 8.2.3 for Windows and Macintosh to resolve critical security issues, including CVE-2010-2862 discussed at the Black Hat USA 2010 security conference and the Adobe Flash Player update as noted in Security Bulletin APSB10-16. Adobe expects to make these updates available on Thursday August 19, 2010.
Adobe’s Flash Player was just patched yesterday. If your Flash Player hasn’t automatically updated, go to adobe.com to get the update..
————————
HOSB RSS Feed
Apple’s recently released iPad has brought video streaming formats to the forefront. Why? Because it doesn’t recognize Flash.
It wasn’t that big a deal when the iPhone shunned Flash, but when the iPad, suitable for Internet browsing, didn’t include Flash it meant that its users would have a limited view of the web.
NOTE: YouTube uses Flash video. Apple added an app that allows YouTube videos.
First, a little background on video streaming. True video streaming requires server software that handles the stream. It monitors the connection speed between the server and the viewer and matches the download speed to the connection speed.
Most web video uses progressive download. That’s where a portion of the video is downloaded and the rest downloads as it’s being viewed. The initial wait time (buffer) and streaming rate are built into the video.
The advantage of progressive downloads are its simplicity and ability to run from any web site. The disadvantage is people with slow connections having to wait during viewing for the video download to catch up and people with fast connections not receiving the optimal experience.
The Video Streaming Battle Begins…
Continue reading .
————————
HOSB RSS Feed
PDF files usually seem harmless. People don’t think twice about opening a PDF, even if it’s an email attachment, or reading one online.
Adobe has acknowledged a vulnerability in its Adobe Reader/Acrobat that allows hackers to hijack data from compromised computers. They are investigating the problem but haven’t come up with a patch yet.
You have two options: disable Javascript in Adobe Reader or use an alternate reader. The video below shows you how to do either option…
The alternate readers described in the video are:
Further reading:
Adobe confirms PDF zero-day attacks.
How to mitigate Adobe PDF malware attacks
[Author's Note 1/18/2010] Adobe released a fix for Adobe Reader/Acrobat Jan 15th. If your software hasn’t automatically updated then go here for directions on how to update..
————————
HOSB RSS Feed
On Tuesday, October 13, 2009 both Microsoft and Adobe will be releasing patches to close vulnerabilities.
Microsoft will be releasing a massive patch on its regularly scheduled ‘patch Tuesday’. This will include a patch discovered two weeks ago that I mentioned in a post on the New Vista Exploit. Microsoft decided to wait for its normal patch schedule to release the fix rather than coming out with a special patch.
The whole patch download (13 bulletins covering 34 security vulnerabilities) will cover products that include Microsoft Windows, Internet Explorer, Microsoft Office, Silverlight, Microsoft Forefront, Developer Tools, and SQL Server.
Also on Tuesday Adobe will release a patch to plug a flaw in its PDF Reader/Acrobat software is being exploited by malicious attackers as part of their quarterly update schedule.
The vulnerability affects Adobe Reader and Acrobat version 9.1.3 and earlier..
————————
HOSB RSS Feed
Recommended
