Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Microsoft, Adobe: PDF security flaw treatable


13 Sep 2010   #1

Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1 Pro
 
 
Microsoft, Adobe: PDF security flaw treatable

Quote:
Microsoft and Adobe Systems have announced that a recently released Microsoft toolkit can be used to block zero-day attacks targeting a security flaw in Adobe's Acrobat and Reader programs.

In its advisory, Microsoft says the following:

"In order to enable EMET for Adobe Reader and Acrobat you have to install EMET and run the following simple command line as an Administrator. Please note the path to the Adobe Reader and Acrobat could be different in your system (especially if you are not using a 64 bit system).

C:\Program Files (x86)\EMET>emet_conf.exe --add "c:\program files (x86)\Adobe\Reader 9.0\Reader\acrord32.exe"

The changes you have made may require restarting one or more applications
Read more:

Microsoft, Adobe: PDF security flaw treatable | Security - CNET News

My System SpecsSystem Spec
.

13 Sep 2010   #2

Windows 7 & Windows Vista Ultimate
 
 

A bit more about EMET from the Security Research and Defense blog: The Enhanced Mitigation Experience Toolkit 2.0 is Now Available
My System SpecsSystem Spec
13 Sep 2010   #3

Windows 7 Ultimate - 64-bit | Windows 8 Pro - 64-bit
 
 
Microsoft's anti-exploit toolkit can help mitigate PDF zero-day attack

Microsoft's anti-exploit toolkit can help mitigate PDF zero-day attacks
Quote:



Microsoft is pushing its new Enhanced Mitigation Experience Toolkit (EMET) as a temporary mitigation for the ongoing attacks against a zero-day vulnerability in Adobe’s PDF Reader/Acrobat products.
The EMET utility, which effectively backports anti-exploit mitigations like ASLR (Address Space Layout Randomization) and DEP (Data Execution Prevention) to older versions of Windows, would force the relocation of non ASLR-aware DLLs in Adobe’s products.
Microsoft's anti-exploit toolkit can help mitigate PDF zero-day attacks | ZDNet
My System SpecsSystem Spec
.


13 Sep 2010   #4

 

Good share
My System SpecsSystem Spec
14 Sep 2010   #5

Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1 Pro
 
 

Here is some more information on EMIT that I found...

Thanx for the link Corrine, I was wondering what it looked like...yes, I still need to put it in. When time permits....

Quote:
EMET supports both 32- and 64-bit applications and activates specific protection mechanisms in compiled binaries. It adds the following mitigations to applications that do not support them natively:
  • Structured Error Handling Overwrite Protection (SEHOP) prevents Structured Exception Handling (SEH) overwrite exploitation by performing SEH chain validation.
  • Dynamic Data Execution Prevention marks portions of a process’s memory non-executable, making it difficult to exploit memory corruption vulnerabilities.
  • NULL page allocation allocates the first page of memory before program initialization and blocks attackers from taking advantage of NULL references in user mode.
  • Heap Spray Allocation pre-allocates memory addresses to block common attacks that fill a process’s heap with specially crafted content.
  • Mandatory address space layout randomization (ASLR), as well as non-ASLR-aware modules on Windows Vista, Windows Server 2008 and Windows 7.
  • Export address table (EAT) uses hardware breakpoints to filter access to the EAT of kernel32.dll and ntdll.dll, blocks access if the instruction pointer is not inside a module, and breaks current common metasploit shellcodes.
Read more:

Microsoft's anti-exploit toolkit can help mitigate PDF zero-day attacks | ZDNet
My System SpecsSystem Spec
Reply

 Microsoft, Adobe: PDF security flaw treatable




Thread Tools




Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 08:36 PM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33