Get APLawrence.com by RSSADOBE security screwup
Thu Dec 16 10:38:57 2004 ADOBE
security screwup
Posted by Tony Lawrence
Search Keys: security
Referencing: http://www.techworld.com/applications/news/index.cfm?NewsID=2818
Sheesh. A simple overflow bug. You'd think by now that nobody would make mistakes like this, but they do.
The bug of course affects both Windows and other platforms, including Mac OS X. Updates are supposedly available at Adobe's site, though when I just quickly checked now I only saw mention of a Windows SP2 related problem. This fix is probably there somewhere; I'll just have to look harder.
Ahh, I see: they don't talk about this. I fired up my Mac Reader and asked it to check for updates; it says there are none. On Windows, I was way out of date, so I downloaded version 6.0.1, which in turn can be updated to 6.0.2. But there is no mention of 6.0.3 which supposedly fixes this bug. Also, I couldn't even get the 6.0.2 update to install - it just fails on my wife's Windows machine. Great job, Adobe!
Important comment moved into main text:
The 6.0.2 patch is one of the more bizarre software patches I've ever seen. Fortunately, you can download a massive 34MB integrated version of 6.0.2 from http://www.adobe.com/products/acrobat/alternate.html (Uninstall 6.0.1 first.) References to 6.0.3 have not yet been posted; the "new downloads" web page is actually unavailable at this moment. --Bob
Have you tried Searching this site?
Unix/Linux/Mac OS X support by phone, email or on-site: Support Rates
This is a Unix/Linux resource website. It contains technical articles about Unix, Linux and general computing related subjects, opinion, news, help files, how-to's, tutorials and more. We appreciate comments and article submissions.
Many of the products and books I review are things I purchased for my own use. Some were given to me specifically for the purpose of reviewing them. I resell or can earn commissions from the sale of some of these items. Links within these pages may be affiliate links that pay me for referring you to them. That's mostly insignificant amounts of money; whenever it is not I have made my relationship plain. I also may own stock in companies mentioned here. If you have any question, please do feel free to contact me.
Specific links that take you to pages that allow you to purchase the item I reviewed are very likely to pay me a commission. Many of the books I review were given to me by the publishers specifically for the purpose of writing a review. These gifts and referral fees do not affect my opinions; I often give bad reviews anyway.
We use Google third-party advertising companies to serve ads when you visit our website. These companies may use information (not including your name, address, email address, or telephone number) about your visits to this and other websites in order to provide advertisements about goods and services of interest to you. If you would like more information about this practice and to know your choices about not having this information used by these companies, click here.
I sell and support
Kerio Mail server
Click here to add your comments
Comment by Bob moveed to main text, thanks Bob!
---December 16, 2004
Comment by Bob moved to main text, thanks Bob!
Comment by Bob moved to main text, thanks Bob!
---December 21, 2004
Apparently, Acrobat Reader 6.0.3 will never see the light of day. Version 7.0 is now available at the same website listed above. And, wonder of wonders, it's only (?) 20.3MB for the full version, and 12.3MB for the basic version. Still larger than 6.0.1, but smaller than 6.0.2.
--Bob
Comment by Bob moved to main text, thanks Bob!
---December 21, 2004
Apparently, Acrobat Reader 6.0.3 will never see the light of day. Version 7.0 is now available at the same website listed above. And, wonder of wonders, it's only (?) 20.3MB for the full version, and 12.8MB for the basic version. Still larger than 6.0.1, but smaller than 6.0.2.
--Bob
---December 21, 2004
Comment by Bob moved to main text, thanks Bob!
---December 21, 2004
Apparently, Acrobat Reader 6.0.3 will never see the light of day. Version 7.0 is now available at the same website listed above. And, wonder of wonders, it's only (?) 20.3MB for the full version, and 12.8MB for the basic version. Still larger than 6.0.1, but smaller than 6.0.2.
--Bob
Don't miss responses! Subscribe to Comments by RSS or by Email
Click here to add your comments
If you want a picture to show with your comment, go get a Gravatar