Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: Adobe Reader 9.3.2

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Programs

Relating to this vendor:
Adobe Systems
And, this specific program:
Adobe Reader 9.x

This thread has been marked as resolved.
ddmarshall Adobe Reader 9.3.2
Dedicated Contributor 13th Apr, 2010 21:23
Ranking: 1208
Posts: 959
User Since: 8th Nov, 2008
System Score: 98%
Location: UK
Adobe Reader and Acrobat 9.3.2 are now available via the Help Menu>Check for Updates.
Fixes multiple vulnerabilties.

More work for Microsoft Update Tuesday .

--
This answer is provided “as-is.” You bear the risk of using it.

Post "RE: Adobe Reader 9.3.2" has been selected as an answer.
Amazin RE: Adobe Reader 9.3.2
Member 14th Apr, 2010 22:26
Score: 3
Posts: 5
User Since: 18th Feb 2010
System Score: N/A
Location: N/A
What help menu? At the Adobe site Support> Updates, selected Adobe Reader for Windows, under Updates/Programs Version 9.3.2 update, which is the latest update. Downloaded, rescanned, still insecure.
Was this reply relevant?
+2
-0
WingeDD RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 06:59
Score: 2
Posts: 3
User Since: 18th May 2009
System Score: N/A
Location: N/A
Last edited on 15th Apr, 2010 07:10
Same issue. Secunia tells that version 9.3.0.148 is detected, even though the executable is version 9.3.2.163 (same file path as shown in secunia, if anyone wonders). Tried removing it and re-updating, the update added the same file back, secunia still reports it's old and insecure.

Also, check for updates reports that none are available (because it is, in fact, 9.3.2).
Was this reply relevant?
+1
-0
This user no longer exists RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 08:52
Hi,

You should be able to upgrade from 9.0 to 9.3.2 in just two steps. Have you been using the files the PSI recommends?
Was this reply relevant?
+0
-0
WingeDD RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 09:20
Score: 2
Posts: 3
User Since: 18th May 2009
System Score: N/A
Location: N/A
Last edited on 15th Apr, 2010 09:21
In fact, I used the direct download link in the secunia's report (msi updater) - it successfully updated the adobe reader. Secunia still insists that the AcroRd32.exe is old and insecure.

P.S. I was updating from 9.3.1 and not 9.3.0 or 9.0.
Was this reply relevant?
+0
-0
Amazin RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 10:43
Score: 3
Posts: 5
User Since: 18th Feb 2010
System Score: N/A
Location: N/A
Last edited on 15th Apr, 2010 11:13
I initially tried the download solution. Which didn't work THAT'S when I went to the Adobe website. Just tried the solution once again, did a re-scan, still insecure!! I also opened Adobe Reader, Help>Updates downloaded the update which required a reboot. Insecure. Downloaded the solution once again, rescanned, INSECURE!!!
Was this reply relevant?
+1
-0
amj2010 remains insecure RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 11:23
Score: 1
Posts: 5
User Since: 13th Jan 2010
System Score: N/A
Location: N/A
on 15th Apr, 2010 10:43, Amazin wrote:
I initially tried the download solution. Which didn't work THAT'S when I went to the Adobe website. Just tried the solution once again, did a re-scan, still insecure!! I also opened Adobe Reader, Help>Updates downloaded the update which required a reboot. Insecure. Downloaded the solution once again, rescanned, INSECURE!!!


we got the same experience today 04/15/10 11:30 am
Was this reply relevant?
+0
-0
This user no longer exists RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 11:31
Hi,

Try removing all installed copies of Adobe Reader.

Then download and install this:
http://get.adobe.com/reader/

Scan with the PSI, and apply all available patches.

Has this solved the problem?
Was this reply relevant?
+0
-0
PHIL53 RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 11:45
Score: 0
Posts: 12
User Since: 23rd Feb 2009
System Score: N/A
Location: Tetbury, Gloucestershire, UK
With this Adobe up-date I just downloaded from PSI and it worked fine, with others I had to remove Adobe totally and then download Adobe Reader fresh.
I'm sure Adobe Reader has a mind of a child i.e. It does what it wants, when it wants!!
Was this reply relevant?
+0
-0
pc.tech1 RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 14:37
Score: 6
Posts: 18
User Since: 13th Feb 2010
System Score: N/A
Location: US
2 related CVE's remain unpatched that were -not- fixed in the v9.3.2 update:
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CV...
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CV...

.

--
This machine has no brain.
Use your own.
.
Was this reply relevant?
+0
-0
artes RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 14:40
Score: 0
Posts: 2
User Since: 27th Aug 2009
System Score: N/A
Location: N/A
Uninstalled Adobe Reader

Downloaded and installed from http://get.adobe.com/reader/

Downloaded update from 9.3.0 to 9.3.2

Rebooted

Scanned with PSI - insecure

Downloaded and installed PSI solution

Scanned with PSI - still insecure

Rebooted

Scanned with PSI - still insecure

Help!
Was this reply relevant?
+0
-0
nskap10w RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 14:42
Score: 0
Posts: 10
User Since: 1st Mar 2010
System Score: N/A
Location: US
Even after removing Adobe Reader 9.3.2 and restarting system, PSI shows it as still insecure even though file AcroRd32.exe is no longer on system.
Was this reply relevant?
+0
-0
This user no longer exists RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 14:53
Hi,
Could I ask you to submit a software suggestion for your (Fully patched!) adobe reader? I have reconstructed the process, and the PSI gives me a clean mark. Please mark the suggestion "Attn: Emil"
Was this reply relevant?
+0
-0
Anthony Wells RE: Adobe Reader 9.3.2
Expert Contributor 15th Apr, 2010 14:53
Score: 2437
Posts: 3,323
User Since: 19th Dec 2007
System Score: N/A
Location: N/A
Last edited on 15th Apr, 2010 15:00

Hello All ,

What is/are the installation paths of the "insecure" versions PSI is reporting ??

Are you using PSI in "advanced" mode ??

Do you have versions of Adobe Reader in "insecure" and/or "patched" and/or "secure browsing" tabs ??

Have you tried the "Repair Adobe .." link in the Adobe Reader "Help" tab drop-down menu ??

Some details may help resolve your problem(s).

Anthony

This post crossed with Emil's but may still be relevant to some/all of you posting a problem .

--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+0
-0
This user no longer exists RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 15:42
Hi,

To whoever submitted the Software suggestion:

You do have 9.3.2.163. The PSI extracts version information from the AcroRD32.exe file only, so you should be up to date. We no longer have a version dependency rule for Adobe Reader, so the version info of this file is enough.
Was this reply relevant?
+0
-0
Amazin RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 15:42
Score: 3
Posts: 5
User Since: 18th Feb 2010
System Score: N/A
Location: N/A
Did this twice!!

Uninstalled Adobe Reader

Downloaded and installed from http://get.adobe.com/reader/

Downloaded update from 9.3.0 to 9.3.2

Rebooted

Scanned with PSI - insecure

Downloaded and installed PSI solution

Scanned with PSI - still insecure

Rebooted

Scanned with PSI - still insecure


In advanced mode showing Insecure and Secure Browsing tabs affected.
Was this reply relevant?
+0
-0
ryan121 RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 15:46
Score: 5
Posts: 4
User Since: 27th May 2008
System Score: N/A
Location: N/A
I'm having the same problem.

I sent a suggestion because the program is clearly up to date.
Was this reply relevant?
+0
-0
This user no longer exists RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 15:47
Hi,

Does a rescan now show you as secure?
Was this reply relevant?
+0
-0
ryan121 RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 16:00
Score: 5
Posts: 4
User Since: 27th May 2008
System Score: N/A
Location: N/A
I don't know if you're talking to me but no it's still showing as insecure after a rescan.
Was this reply relevant?
+0
-0
Amazin RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 16:03
Score: 3
Posts: 5
User Since: 18th Feb 2010
System Score: N/A
Location: N/A
Whew!!! Finally was able to complete a full scan (seemed to stall at 93% showing that the scan had gone on for almost 2 hours) and its secure. Don't know if it was due to the server issue or not but it's finally resolved!!!
Was this reply relevant?
+0
-0
This user no longer exists RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 16:10
Hi,

Anyone still having this problem, please:
Enter "advanced" mode (Clicking "advanced" in the top right corner)
Expand the Insecure Adobe Reader entry (click "+")
Take a screenshot (http://www.wikihow.com/Take-a-Screenshot-in-Micros...)
Email me that screenshot at support@secunia.com

thank you for your cooperation.
Was this reply relevant?
+0
-0
WingeDD RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 16:11
Score: 2
Posts: 3
User Since: 18th May 2009
System Score: N/A
Location: N/A
Last edited on 15th Apr, 2010 16:20
Uninstalled Adobe Reader - SHOWS as insecure...

http://img130.imageshack.us/img130/4172/uninstalle...
http://img355.imageshack.us/img355/7889/uninstalle...

Full scan resolved the issue. Was it a wrong file signature in secunia's database (that has now been fixed)?
Was this reply relevant?
+1
-0
ryan121 RE: Adobe Reader 9.3.2
Member 15th Apr, 2010 17:28
Score: 5
Posts: 4
User Since: 27th May 2008
System Score: N/A
Location: N/A
Just completed a full scan and it's now patched.
Was this reply relevant?
+0
-0

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability