NEWS /
Sophos Urges Adobe to Disable JavaScript
02 Jul, 2010, 10:48 am IST | by
Press Release
|
|
IT security and data protection firm, Sophos, has urged software provider Adobe to begin disabling JavaScript in its products by default. This comes following the most recent security update for Adobe Acrobat and Reader which fixed a serious vulnerability that relies on JavaScript code. The vulnerability – named CVE-2010-1297 – involved a booby-trapped PDF file which would contain a Flash animation and relied on JavaScript for the exploit to work. The exploit is more complex than previous Adobe exploits, potentially marking a new trend in the development of Adobe exploits. “The common thread in most, if not all, Adobe exploits is the requirement for JavaScript , as exploits will work correctly only if JavaScript is enabled,” said Vanja Svajcer Principal Virus Researcher at Sophos. “This is why we recommend all users disable JavaScript in Adobe Acrobat and Reader.” “The company’s regular security updates show that Adobe is now doing more to address vulnerabilities, but the high number of patched vulnerabilities indicate that it may be a good time for Adobe to overhaul its approach to building security into its products,” continued Svajcer. “If nothing else, JavaScript should be disabled by default in Adobe Reader.” Sophos recommends that all users disable JavaScript in Adobe Acrobat and Reader by default, more details of how to do this can be found on the SophosLabs Blog here: http://www.sophos.com/blogs/sophoslabs/v/post/3267
|
Tags: Sophos , Adobe , Javascript
Mixx
Facebook
Twitter
Digg
delicious
reddit
MySpace
StumbleUpon
LinkedIn
Angry Birds Space for Android may contain malware
Angry Birds Space is quite the hit, it reached 10 million downloads in the first three days alone. Users may ...
Security firms intrigued by Apple's Gatekeeper
Facebook Timeline concerns 51 percent of users
Virus infections stop as Facebook names suspects
60,000 Facebook account logins compromised everyday
Online scammers seek to profit from the death of Steve Jobs
Spelling mistakes can lead to online security breaches
Leaked Images, Availability, Pricing,
Specs, Pre-order
Karbonn officially launches the A9 Android smartphone
14 May, 2012, 06:14 PM IST
Supreme Court website hacked in response to TPB, Vimeo block
17 May, 2012, 04:46 PM IST
Sony Xperia P up for pre-order on Infibeam, launching on 25 May
19 May, 2012, 04:32 PM IST
Samsung Galaxy S III pops up on eBay India for Rs. 44,770
22 May, 2012, 11:19 AM IST
16 May, 2012, 11:57 AM IST
The latest "should they-shouldn't they" event with Facebook is the lift of the minimu...
Creative Sound Blaster Recon3D Fatal1ty Champion Review
26 May, 2012, 04:13 PM IST
6.0
Back in the day when audio solutions weren’t integrated into motherboards, people had to go out and buy their own sound cards. They were large
Asus Eee Pad Transformer Prime TF201 Review
Portable Wi-Fi Drives for your smartphone
Fed up of the limited storage on your mobile device? Here are some devices
Top 5 potential Gmail alternatives
Google’s Gmail service is arguably the most advanced and feature-packed...
Five ways to beat the petrol hike
Petrol prices went up by a considerable amount post Wednesday, and this...
By Karan Shah
SpaceX's Dragon capsule locks up to the ISS
26 May, 2012, 04:18 PM IST
In a moment that is nothing short of being historic, SpaceX’s Dragon capsule has, according to NASA reports ...
Microsoft VP talks about Ballmer's new tech - an 80-inch touchscreen
Cisco won't invest in their Android tablet for businesses
Yahoo! shuts down Livestand 6 months after launch
Giant radio telescope gets split location
776 views
_011517074205_160x90.jpg "Epson Stylus Photo R3000")
Sony to roll-out ICS update next week,...
BlackBerry Curve 9320 announced in India...
Microsoft VP talks about Ballmer's...
Cisco won't invest in their Android...
About Us | Site Profile | Tech2 Team | IBNLive News | IBNLive Hindi News | Cricket News | Indian Stock Market | Policy | T & C
Copyright © 2011, Tech2.com India - A Network 18 India Venture
