Questions regarding Adobe suite of products, notably in their product families; consisting of Creative Cloud, Photoshop family, Acrobat family, Elements family
Questions tagged [adobe]
8 questions
7
votes
2 answers
What makes Adobe formats so vulnerable?
Tools that deal with SWFs, PDFs, OTF... seem to suffer from a disproportionate amount of vulnerabilities. Is the a characteristic in the formats that Adobe creates that makes them more susceptible to be broken?
Related:
Why are Adobe Flash exploits…
Jedi
- 3,906
- 2
- 24
- 42
4
votes
2 answers
How to harden Adobe Acrobat and Acrobat Reader
I found this recommendation by the CISA to disable Javascript in Acrobat Reader. Also, this article recommends to disable Flash and Multimedia, and the opening of non-PDF attachments. Both recommendations are from 2010.
What more steps would you add…
Victor
- 373
- 1
- 10
3
votes
2 answers
Can .ai files (Adobe Illustrator) be malicious?
They are blocked by our email gateway, but are also needed for some workflows. Can these files even contain malicious content and possibly execute code?
Mia
- 61
- 2
3
votes
1 answer
Will Adobe have to re-sign all their previous publications?
Adobe recently published their PGP private key by accident. They have now issued a new one. But will they need to re-sign (with their new key) everything that was signed with their old key? As somebody could now sign malicious content with the old…
jl6
- 625
- 4
- 9
3
votes
1 answer
Does Adobe Acrobat Reader DC upload opened PDF files?
I'm wondering if Adobe Reader DC uploads all the PDF files it opens to the Adobe Cloud, even if you have not signed up for the cloud. I am not a fan of Adobe and generally do not install Adobe products on my computers if I can avoid it. …
Douglas B. Staple
- 133
- 4
2
votes
1 answer
What client software is affected by JPEG 2000 / TALOS-2016-0193/CVE-2016-8332
A vulnerability in JPEG 2000 file formats has been discovered.
The articles seem to refer to OpenJPEG implementation when discussing this bug, however what's not clear is who is the vulnerable party.
Is the vulnerability specific to software that…
makerofthings7
- 50,090
- 54
- 250
- 536
1
vote
1 answer
Adobe uses CA signature type as identifier on signatures created with user certificates
I am testing several PKCS12 keystores with ECC type keys, generated by a CA with RSA key, to sign PDF documents. I have also tested with my own certificates from a demo CA certificate. I use Adobe Acrobat Reader DC 2022.001.20085 on Windows 10 to…
RobertGG
- 47
- 4
0
votes
2 answers
How do I keep the PDF files in OneDrive secure?
I need to store multiple PDF files with sensitive information in OneDrive (consumer, not business version). However I am worried about the security risks in doing so.
I could secure the PDFs with a strong password with AES256, but given the scenario…
Arete
- 103
- 2