Avast WEBforum
Other => General Topics => Topic started by: pete319 on October 20, 2009, 07:43:22 AM
-
I thought this may be of interest, See link below
http://www.h-online.com/security/news/item/Vulnerabilities-in-several-PDF-applications-833449.html (http://www.h-online.com/security/news/item/Vulnerabilities-in-several-PDF-applications-833449.html)
-
Thanks for showing Foxit fans they are not secure too!! ;D :D ::)
-
Thanks for showing Foxit fans they are not secure too!! ;D :D ::)
IE8 not vulnerable? The flaw was discovered in version 3.1.1.0928 and has also been confirmed to exist in the current version 3.1.2.1013 of Foxit Reader (with Firefox 3.5.3 ).
-
Thanks for showing Foxit fans they are not secure too!! ;D :D ::)
So, does it please you if someon posts possible exploits of PDF Xchange viewer portable version? Jokes aside, at times, portable version of software saves the day since it is not tied to the system and other programs. In fact, I didn't find any .NET Framework Assistant plugin on portable Firefoxes on our systems.
According to Logos' relatively recent post (http://forum.avast.com/index.php?&topic=49958.0), unpatched vulnerabilities of applications such as Adobe Reader and, of course, Adobe Flash (also, Foxit Reader according to the article introduced in the original post) are dangerous when combined with web browsers.
People who are unfortunate enough to visit the sites won't see anything unusual. But behind the scenes, a PHP script checks their version of Adobe Reader and Adobe Flash, and if either is out of date, hijacks their PCs using known vulnerabilities. If both of those programs are up to date, the script tests to see if the system is vulnerable to several bugs Microsoft has patched in the last few months.
Even my portable version of Firefox is not immune to Adobe Flash exploit, which is why I have to check for the latest update of it even though NoScript can reduce the chance of successful exploitation. Seriously, these kind of information shouldn't be needed for application fanboysm/fangalism but to secure our systems.
[Edited to avoid further confusions]
-
Thanks for showing Foxit fans they are not secure too!! ;D :D ::)
So, does it please you if someon posts possible exploits of PDF Xchange viewer portable version? Jokes aside, at times, portable version of software saves the day since it is not tied to the system and other programs. In fact, I didn't find any .NET Framework Assistant plugin on portable Firefoxes on our systems.
According to Logos' relatively recent post (http://forum.avast.com/index.php?&topic=49958.0), unpatched vulnerbilities of applications such as Foxit Reader, Adobe Reader and, of course, Adobe Flash are dangerous when combined with web browsers.
It mentions Adobe Reader and Adobe Flash but not Foxit Reader.
Don't read any PDF file that is not from a trusted source.
-
It mentions Adobe Reader and Adobe Flash but not Foxit Reader.
No, it doesn't mention Foxit Reader but I added it in reference to the OP. A common point of the articles is that these applications may become targets through plug-ins installed on web browsers.
-
Thank you for the heads-up, Pete. I've subsequently posted a warning about this Security Vulnerability in Foxit Reader 3.1.2.1013 to the Foxit Reader and Mozillazine Tech forums.
http://forums.foxitsoftware.com/showthread.php?t=15553
http://forums.mozillazine.org/viewtopic.php?f=37&t=1546015
BTW, I assume that all these Internet apps have unreported vulnerabilities too. I like YoKenny's advice:
Don't read any PDF file that is not from a trusted source.
If I recall correctly, YoKenny also keeps himself safe by keeping IE8 in Vista fully patched. I do the same in Firefox and also use the NoScript extension to block all pdf files. Until Foxit fixes it, I've disabled the Foxit Reader plugin for Firefox.
-
BTW, I assume that all these Internet apps have unreported vulnerabilities too. I like YoKenny's advice:
Indeed, the article says "numerous PDF applications," whether through plug-ins or not.
-
BTW, I assume that all these Internet apps have unreported vulnerabilities too. I like YoKenny's advice:
Indeed, the article says "numerous PDF applications," whether through plug-ins or not.
I see now I wasn't clear. I'm talking about unreported vulnerabilities in all Internet apps, not just pdf readers or the ones the article itemizes.
Edit: spelling
-
I see know I wasn't clear. I'm talking about unreported vulnerabilities in all Internet apps, not just pdf readers or the ones the article itemizes.
??? In that case, I'm confused. Any app may have unreported vulnerabilities but its too much generalization for this specific issue in this topic, I guess.
-
I was indeed posting what I do to protect myself from all vulnerabilities, including the ones referenced in the article. I think briefly mentioning techniques for reducing exposure to vulnerabilities in general is on-topic here, especially if they also cover the ones itemized in the article. But I can see how that may have confused you.
-
I was indeed posting what I do to protect myself from all vulnerabilities, including the ones referenced in the article. I think briefly mentioning techniques for reducing exposure to vulnerabilities in general is on-topic here, especially if they also cover the ones itemized in the article. But I can see how that may have confused you.
I see, thanks for the clarification.
-
no, it never please me when I hear there are a new flaw and threat, virus, malware etc.
I wish there was none of them and everyone was secure, and not working on their protection and only using and enjoying their web surf and computer usage.
just I liked that link because it said same what I say, I was saying alternatives look like secure because they are no popular as origin programs so they are not under radars of hackers and people talk about them less than origin, that's all, I don't want to talk about them again because I've said these many times.
-
If I recall correctly, YoKenny also keeps himself safe by keeping IE8 in Vista fully patched. I do the same in Firefox and also use the NoScript extension to block all pdf files. Until Foxit fixes it, I've disabled the Foxit Reader plugin for Firefox.
I don't use Firefox nor Vista and use Windows 7 as I like its additional features.
Protected Mode in IE7/IE8 requires UAC be fully enabled in addition to the setting in Internet Explorer being enabled.
Since UAC is typically disabled by Windows Vista/Windows 7 users, that's an important point to consider.
Switch UAC to the quiet mode
http://www.tweak-uac.com/what-is-tweak-uac
-
Hi Omid Farhang,
Thanks for showing Foxit fans they are not secure too!!
How many vulnerabilities the Firefox Plug-in Foxit Reader has in common with Adobe's reader?
So Foxit ReaderFirefox plug-in is also vulnerable, and no patch in sight yet....
http://seclists.org/fulldisclosure/2009/Oct/198
So download first than read.....but what about new (malicious) PDF-files.
Why did not Firefox put the plug-in on the block list?
polonus
P.S. I have scanned with Secunia PSI and a clean list....
-
If I recall correctly, YoKenny also keeps himself safe by keeping IE8 in Vista fully patched. I do the same in Firefox and also use the NoScript extension to block all pdf files. Until Foxit fixes it, I've disabled the Foxit Reader plugin for Firefox.
I don't use Firefox nor Vista and use Windows 7 as I like its additional features.
Protected Mode in IE7/IE8 requires UAC be fully enabled in addition to the setting in Internet Explorer being enabled.
Since UAC is typically disabled by Windows Vista/Windows 7 users, that's an important point to consider.
Switch UAC to the quiet mode
http://www.tweak-uac.com/what-is-tweak-uac
My apologies for misremembering your OS. I think we all know by now that you don't use Firefox. :)
I've heard that IE8 does a better job of protecting the user than IE7. Would you recommend that people use IE8 instead of IE7? I usually do.
-
Hi Omid Farhang,
Thanks for showing Foxit fans they are not secure too!!
How many vulnerabilities the Firefox Plug-in Foxit Reader has in common with Adobe's reader?
So Foxit ReaderFirefox plug-in is also vulnerable, and no patch in sight yet....
http://seclists.org/fulldisclosure/2009/Oct/198
So download first than read.....but what about new (malicious) PDF-files.
Why did not Firefox put the plug-in on the block list?
polonus
That's talking about Foxit reader version 3.1.1.0928 not 3.1.2.1013
-
My apologies for misremembering your OS. I think we all know by now that you don't use Firefox. :)
I've heard that IE8 does a better job of protecting the user than IE7. Would you recommend that people use IE8 instead of IE7? I usually do.
No appologies necessary.
There are many reasons to use IE8:
Increased performance
http://www.microsoft.com/windows/internet-explorer/features/faster.aspx
Stay Safer Online
http://www.microsoft.com/windows/internet-explorer/features/safer.aspx
Enhanced tabbed browsing
http://www.microsoft.com/windows/internet-explorer/features/easier.aspx
-
There are many reasons to use IE8:
Increased performance
http://www.microsoft.com/windows/internet-explorer/features/faster.aspx
Stay Safer Online
http://www.microsoft.com/windows/internet-explorer/features/safer.aspx
Enhanced tabbed browsing
http://www.microsoft.com/windows/internet-explorer/features/easier.aspx
There are many reasons to use Mozilla Firefox 3.x:
General review
http://www.mozilla-europe.org/en/firefox/
The safest web browser
http://www.mozilla-europe.org/en/firefox/security/
Firefox features
http://www.mozilla-europe.org/en/firefox/features/
-
Do people that use Firefox end up looking like your avatar?
Using a browser is a user's choice and thankfully there is a choice.
-
Do people that use Firefox end up looking like your avatar?
(http://smiles.kolobok.us/big_standart/negative.gif)
Using a browser is a user's choice and thankfully there is a choice.
"Choice consists of the mental process of thinking involved with the process of judging the merits of multiple options and selecting one of them for action."
(From Wikipedia, the free encyclopedia).
-
Your last post incuded a link detected by Malwarebytes IP protection
http://smiles.kolobok.us/big_standart/negative.gifhttp://hosts-file.net/default.asp?s=98.124.198.1
-
Do people that use Firefox end up looking like your avatar?
(http://smiles.kolobok.us/big_standart/negative.gif)
friend, I offer you to use smilies in this page instead of Kolobok, Malwarebytes has a negative opinion about it (I think for no good reason)
http://forum.qip.ru/misc.php?do=showsmilies
-
friend, I offer you to use smilies in this page instead of Kolobok, Malwarebytes has a negative opinion about it (I think for no good reason)
http://forum.qip.ru/misc.php?do=showsmilies
You are confusing smiles with avatars.
-
friend, I offer you to use smilies in this page instead of Kolobok, Malwarebytes has a negative opinion about it (I think for no good reason)
http://forum.qip.ru/misc.php?do=showsmilies
You are confusing smiles with avatars.
No, I'm not!
in his post he used a smiley from this URL: hXXp://smiles.kolobok.us/big_standart/negative.gif which MBAM blocked and you report with another link. I attached that smily to this post.
and the link I posted in reply are list of Smilies in QiP messenger (the popular messenger in Russia).
-
I was refering to the avatar not the smilies:
http://forum.avast.com/index.php?action=dlattach;attach=29744;type=avatar
-
I was refering to the avatar not the smilies:
http://forum.avast.com/index.php?action=dlattach;attach=29744;type=avatar
oops! that's funny, in my side, MBAM blocked the smily, not his avatar, that avatar is stored in avast! forum, what's wrong with that?
check that post again, YoKenny!
-
Please, take off the gloves and shake hands. :)
-
Please, take off the gloves and shake hands. :)
With great pleasure!
As for my avatar, I chose Master Yoda (http://en.wikipedia.org/wiki/Yoda), a Jedi teacher, because of three reasons:
1) We are both teachers.
2) He usually wished "May the Force (http://en.wikipedia.org/wiki/Force_%28Star_Wars%29) be with you!" and I wish "May the FOSS (http://en.wikipedia.org/wiki/Free_and_open_source_software) be with you!".
3) I like "Star Wars".
-
Please, take off the gloves and shake hands. :)
right post at the right time.
nmb
-
nice to know that Foxit reader have fix that bug then.
Thanks for the information