Re: CRIME PDF Vulneravility

From: Alan (alan@private)
Date: Thu Oct 14 2004 - 15:58:16 PDT


On Thu, 2004-10-14 at 09:03, George Heuston wrote:
> Adobe Acrobat / Adobe Reader disclosure of sensitive information... A
> vulnerability has been discovered in Adobe Acrobat and Adobe Reader,
> which can be exploited by malicious people to disclose sensitive
> information. The problem is that embedded Macromedia flash files can
> be executed in a local context. There is no vendor solution at this
> time.

Not having flash installed would probably help.

Of course, that would make much of the web useless.  (Not that that is a
bad thing.)

-- 
'This message has not been made with the consent or cooperation of
the Federal Board of Regulations (F.B.R.) or the Central Enquires
Agency (C.E.A.). Any resemblance to persons living or dead is purely
coincidental, and so forth and so on.



This archive was generated by hypermail 2.1.3 : Thu Oct 14 2004 - 16:59:41 PDT