After the recent emergency out of cycle patch of Adobe Reader (again!), maybe we should be looking toward finding a better solution to the problem – the fact that Adobe cannot write secure software.
Yeah I know they are releasing Reader X with ‘sandboxing’ la la la, link here to article on ThreatPost, but maybe they should just write some decent secure code – its only a document viewer after all!
After doing a bit of research and having some experience using alternate PDF readers, I’ve come to the conclusion that there are other better more secure applications.
There is 1 application in particular – Evince – the 1 included with Ubuntu and other Gnome distro’s, I have found only 1 advisory listed on Exploitdb where as Adobe Reader, Exploitdb lists 9 and visit the Adobe site and search for advisories and you’ll be amazed how many there are listed.
Continue reading “Maybe We Should Not Use Adobe Reader – Looking For An Alternative”