Beware of PDF Files! Внимавайте с PDF файлове!

"In an October 5 posting on its Web site, Adobe said the 'critical' flaw is incorporated into versions of Adobe Reader and Acrobat software, and could allow malicious programs to get on to a PC without the user knowing about it."

... the full story...

[Quote]On one hand ‘… do not open any PDF files…’ sounds rather harsh and on the other is similar to the statement ‘… no earthquakes are allowed…’. :-) [End Quote]
hahahaha .. you are not called 'Wizard' for nothing!


[Quote]
Moia is right – one can easily switch to Firefox and to Mozilla PDF viewer. I don’t understand on a first place why one would use Internet Explorer. Firefox was and still is by far much better browser. I think it is clear already that Microsoft is simply unable to produce a good browser. It took them quite a while and still the result is poor. Perhaps they could concentrate on something else.

I know the IE comes preinstalled on the Windows running computers and it seems easier to start using it right away. However, installing Firefox is so easy and effortless that the only reason I could think of to stop some one to do it is mental laziness.
[End Qoute]

Yes, I completely agree!!!
The 'sad' aspect is that the report suggests a 'solution' that is completely unreasonable. If such 'solution' was implied (or explicitly communicated) by Mr. Petkov then I have to question his motivation and his objectiveness (in addition to his qualifications). In the end the proposed solution -- "Don't open any PDF files" -- makes no sense given the fact that there are clear alternatives and is [his 'solution'] completely devoid of critical analysis, i.e. are there any other possible venues for people to explore in order to avoid this vulnerability.

Given enough time people will simply learn about how vulnerable their computers are and perhaps this is as good of a time as any to start such discussion.

Regards!

On one hand ‘… do not open any PDF files…’ sounds rather harsh and on the other is similar to the statement ‘… no earthquakes are allowed…’. :-)

Moia is right – one can easily switch to Firefox and to Mozilla PDF viewer. I don’t understand on a first place why one would use Internet Explorer. Firefox was and still is by far much better browser. I think it is clear already that Microsoft is simply unable to produce a good browser. It took them quite a while and still the result is poor. Perhaps they could concentrate on something else.

I know the IE comes preinstalled on the Windows running computers and it seems easier to start using it right away. However, installing Firefox is so easy and effortless that the only reason I could think of to stop some one to do it is mental laziness.

It also appears that the particular bug in question is related to Internet Explorer 7  and Acrobat Reader 7/8 and Windows XP. So the fix is rather simple, get Firefox and install the Mozilla PDF viewer.

I would suggest that this is a much more sensible solution when compared to "Don't open any PDF files." ;-)

Regards.

Hahahah ... this is funny [Quote] "My advise [sic] for you is not to open any PDF files (locally or remotely)," Petkov said. [End Quote] In other news: It has been known for a very long time that Windows is a highly vulnerable (from security standpoint) platform. There have been numerous exploits that don't require the Windows user to perform any action other than connect the computer to the network (internet) in order to have the Windows computer compromised, in a matter of seconds. The 'obvious' conclusion would be that all those who have Windows installed on their computers shouldn't connect to the Internet. There are many people who discover and report software flaws, which eventually are fixed. Most of those people do it in a professional manner that facilitates the fixing of the problems, rather than engaging in 'sensationalism'. Nine months ago a group of hackers (this is not a bad term, 'crackers' is the proper bad term) got together and spent 4 weeks hacking OS X (Apple). They discovered quite a few vulnerabilities that were promptly fixed, and they did all this without engaging in too much 'Hoopla". All software has bugs and this is pretty much unavoidable, given a particular level of complexity. This, however, doesn't mean that we should all stop using software since *it* is inherently insecure. Regards. p.s. In addition the above quote from Mr. Petkov contains a term that is somewhat confusing. He implies that PDF files can be opened remotely ... what does that mean?