::: Welcome to DrayTek MyVigor Website - http://myvigor.draytek.com :::

Adobe "/launch" issue workarounds

D-SWAT

  Late last month, Didier Stevens, a well-known security researcher discussed a POC relating to the "/launch" functionality in PDF files. Stevens was able to launch a command and run an executable within a PDF file using a multi-part scripting process. He does not use any vulnerability, but a feature.

  "This is a good example of powerful functionality relied upon by some users that also carries potential risks when used incorrectly by others. The warning message provided in Adobe Reader and Acrobat includes strong wording advising users to only open and execute the file if it comes from a trusted source. Furthermore, the default option within the dialog is to not execute," Adobe Reader Blog said.

This is not an implementation, but a design problem, various PDF readers are vulnerable.

Workarounds:
Adobe has suggested the following workarounds, as listed HERE.

  1. For consumers, open up the Preferences panel and click on "Trust Manager" in the left pane. Clear the check box "Allow opening of non-PDF file attachments with external applications".

  2. For administrators who wish to accomplish this with a registry setting on Windows, add the following DWORD value to:
          HKEY_CURRENT_USERSoftwareAdobeAcrobat Reader9.0Originals

          Name: bAllowOpenFile
          Type: REG_DWORD
          Data: 0

  3. Furthermore, an administrator can grey out the preference to keep end-users from turning this capability on, by adding the following DWORD value to:
          HKEY_CURRENT_USERSoftwareAdobeAcrobat Reader9.0Originals

          Name: bSecureOpenFile
          Type: REG_DWORD
          Data: 1

References:
  http://blogs.adobe.com/adobereader/2010/04/didier_stevens_launch_function.html
  http://isc.sans.org/diary.html?storyid=8599
  http://isc.sans.org/diary.html?storyid=8545

The information from Draytek Corp.

About DrayTek

DrayTek Corp., founded in 1997, is a global provider of comprehensive network security, remote access and VoIP solutions for residential/small office and Small and Medium Enterprises(SME) use. To meet the needs of customers for quality and cost-effectiveness, DrayTek, with technologies integrated with real-time Anti-Virus/Anti-Intrusion system, VPN, VoIP and xDSL broadband access, has successfully delivered total network protection worldwide. For more information, please visit the company's website at http://www.draytek.com.

Press Contact:
DrayTek Marketing Dept.
press@draytek.com