The Register® — Biting the hand that feeds IT

PDFs open critical hole in Internet Explorer

Botnet surprise

Free whitepaper – Vulnerability management buyer's checklist

A critical vulnerability has been identified in Adobe's Acrobat and Reader software which affects Internet Explorer users.

As well as causing crashes, the frailty could allow a botnet to take control of the whole computer when a PDF is opened within Explorer.

The hole is present in Acrobat Standard and Professional versions 7.0.0 to 7.0.8, and Adobe Reader 7.0.0 to 7.0.8. Only Microsoft's browser is vulnerable.

Adobe's programmers are working on a patch, which should be available on its support site soon. In the meantime, deleting AcroPDF.dll from the will prevent Explorer from opening PDFs in the browser window.

Adobe's advisory is here. ®

Free whitepaper – The starter PKI program

Don’t Miss

HandcuffsFeds: Hospital hacker's 'massive' DDoS averted

Arrest foils 'Devil's Day' scheme

thumbs down teaser 75Buggy 'smart meters' open door to power-grid botnet

Grid-burrowing worm only the beginning

MicrosoftMicrosoft knew of nasty IE bug a year before attacks

Security delayed or security denied?

BlockMaster SafeStickBlockMaster SafeStick hardware-encrypted USB drive

Review Tough enough?