Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: Secunia doesn't recognize patch, part II (in full scan)

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Programs

Relating to this vendor:
Adobe Systems
And, this specific program:
Adobe Acrobat 8.x

This thread has been marked as resolved.
Sakerhet Secunia doesn't recognize patch, part II (in full scan)
Member 28th Aug, 2010 12:47
Ranking: 7
Posts: 7
User Since: 11th Jun, 2008
System Score: N/A
Location: SE
When I run a full scan Secunia recognize Acrobat.exe as version 8.1.7.59.

Windows 7 (X64) states in the file options tab the version is 8.2.3.231. But when Secunia runs a "rescan" for just that single file it is recognized as safe and the version is claimed to be 8.2.4.268.

Whenever I do a complete rescan in Secunia Acrobat is again on the "insecure page" and recognized as version 8.1.7.59.

What is the difference between a full scan and a rescan and why does neither state the actual file version (8.2.3.231)?

Post "RE: Secunia doesn't recognize patch, part II (in full scan)" has been selected as an answer.
Anthony Wells RE: Secunia doesn't recognize patch, part II (in full scan)
Expert Contributor 28th Aug, 2010 16:02
Score: 2437
Posts: 3,332
User Since: 19th Dec 2007
System Score: N/A
Location: N/A
Last edited on 28th Aug, 2010 16:05
@Sakerhet ,

This problem (or very similar) has occured with previous updates to Adobe Acrobat 8.x .

You may well need Secunia to update their their detection rules ; they will be back to work on the PSI on Monday next . If they do not pick up this thread at that time , you may wish to contact them direct by Email at support@secunia.com

Technically the PSI uses the .exe 8.2.3.231 file to "recognise" the programme , but the .dll 8.2.4.268 file to "recognise" the version and tell you if your are fully patched or not .

The version 8.1.7.59 of the .exe is "insecure" , as far as I know .

So , whilst waiting for Secunia and using the PSI in "advanced" , here are some points to consider :-
is there more than one version of your Acrobat showing ?? if so in which "tab(s)" do it/they appear ?? What is/are the "installation path(s))" and version number(s) ??

Anthony

PS : AFAIK , the rescan just rechecks the file data as is , while the full scan resets and rechecks all data and compares it to the Secunia data base . They will probably explain ti better/correctly on Monday

--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+3
-0
This user no longer exists RE: Secunia doesn't recognize patch, part II (in full scan)
Member 30th Aug, 2010 14:40
Hi,

When the PSI runs a full scan, occasionally information from older versions (perhaps on a backup drive) can be included in the scan, which can lead it to detect an improper version number. The local rescan only scans the current directory. The PSI does not always take the version information directly from the main executable, but instead use "version dependency rules", where we take the information we need from a secondary file, in this case (as Anthony correctly remarked), the file "Acrobat.dll".

This issue is a known bug, and a fix is being considered for future versions. As a workaround, I suggest using the local rescan to pick up the relevant version information.

hope this helps.
Was this reply relevant?
+0
-0

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability