New exploits a reminder to patch applications
Wednesday, October 01, 2008
Information Security professionals have issued warnings about two new exploit toolkits that target vulnerabilities in PDF reader software. An exploit is simply a program that takes advantage of, or exploits, a flaw in another program. It's the software equivalent of sneaking into a house through an unlocked window.
The way you stop someone from getting into your house is to carefully lock windows and doors. The way you stop software exploits is patching.
The UW-Madison Office of Campus Information Security encourages everyone to patch applications regularly. Some applications that have been targeted for exploit recently include:
Adobe Reader
- Adobe Flash Player
- Apple Quicktime
- Sun Java JRE
- Real Networks RealPlayer
The following links will provide instructions for patching some of the applications above:
Java for Windows: https://helpdesk.wisc.edu/page.php?id=5345
Mac OS X Software Update (updates Quicktime, Java and Apple's built in PDF viewing capabilities): https://helpdesk.wisc.edu/page.php?id=4551
Adobe Self Help Support: https://helpdesk.wisc.edu/page.php?id=2933
And it's always important to keep your operating system patched:
http://www.cio.wisc.edu/security/secure/versions.aspx
http://www.cio.wisc.edu/security/secure/updateOS.aspx