{"id":699,"date":"2009-02-24T11:14:43","date_gmt":"2009-02-24T10:14:43","guid":{"rendered":"http:\/\/blog.intego.com\/?p=699"},"modified":"2009-02-24T11:14:43","modified_gmt":"2009-02-24T10:14:43","slug":"acrobat-vulnerability-present-in-apples-preview","status":"publish","type":"post","link":"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/","title":{"rendered":"Acrobat Vulnerability Present in Apple&#8217;s Preview"},"content":{"rendered":"<p><img src=\"https:\/\/www.intego.com\/mac-security-blog\/images\/acrobat.jpg\"><\/p>\n<p>We <a href=\"https:\/\/www.intego.com\/mac-security-blog\/2009\/02\/21\/acrobat-vulnerability-threatens-pdf-users\/\">recently reported on a vulnerability in Adobe Acrobat<\/a>, which, while Adobe affects all platforms, Intego researchers found does not affect the Mac. However, our researchers have found that the exploit used to take advantage of the Acrobat vulnerability does indeed affect Apple&#8217;s Preview (at least the 10.5 version), as well as other programs that use Preview&#8217;s framework to display PDFs, such as Safari, Mail, or even the Finder if a user tries to view a PDF file with this exploit in QuickLook. For now, this is just a proof-of-concept vulnerability, and no code has been found in the wild that attempts to exploit this flaw. But given the widespread presence of PDFs on the Internet, any such bug has serious consequences. <\/p>\n<p>Secunia <a href=\"http:\/\/secunia.com\/blog\/44\/\">is reporting<\/a> that they have created an exploit that does not use JavaScript, which many sources said was needed for this vulnerability to be exploited. This is undoubtedly similar to that which our researchers have discovered, which affects Preview; the Apple program does not support JavaScript. <\/p>\n","protected":false},"excerpt":{"rendered":"<p>We recently reported on a vulnerability in Adobe Acrobat, which, while Adobe affects all platforms, Intego researchers found does not affect the Mac. However, our researchers have found that the exploit used to take advantage of the Acrobat vulnerability does indeed affect Apple&#8217;s Preview (at least the 10.5 version), as well as other programs that [&hellip;]<\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"spay_email":"","jetpack_publicize_message":"","jetpack_is_tweetstorm":false},"categories":[7,13],"tags":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v17.4 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<meta name=\"description\" content=\"We recently reported on a vulnerability in Adobe Acrobat, which, while Adobe affects all platforms, Intego researchers found does not affect the Mac.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Acrobat Vulnerability Present in Apple&#039;s Preview - The Mac Security Blog\" \/>\n<meta property=\"og:description\" content=\"We recently reported on a vulnerability in Adobe Acrobat, which, while Adobe affects all platforms, Intego researchers found does not affect the Mac.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/\" \/>\n<meta property=\"og:site_name\" content=\"The Mac Security Blog\" \/>\n<meta property=\"article:published_time\" content=\"2009-02-24T10:14:43+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.intego.com\/mac-security-blog\/images\/acrobat.jpg\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Peter James\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\",\"name\":\"Intego\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/\",\"sameAs\":[],\"logo\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#logo\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png\",\"contentUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png\",\"width\":875,\"height\":875,\"caption\":\"Intego\"},\"image\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#logo\"}},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#website\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/\",\"name\":\"The Mac Security Blog\",\"description\":\"Keep Macs safe from the dangers of the Internet\",\"publisher\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.intego.com\/mac-security-blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/#primaryimage\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/images\/acrobat.jpg\",\"contentUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/images\/acrobat.jpg\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/#webpage\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/\",\"name\":\"Acrobat Vulnerability Present in Apple's Preview - The Mac Security Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/#primaryimage\"},\"datePublished\":\"2009-02-24T10:14:43+00:00\",\"dateModified\":\"2009-02-24T10:14:43+00:00\",\"description\":\"We recently reported on a vulnerability in Adobe Acrobat, which, while Adobe affects all platforms, Intego researchers found does not affect the Mac.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.intego.com\/mac-security-blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Acrobat Vulnerability Present in Apple&#8217;s Preview\"}]},{\"@type\":\"Article\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/#webpage\"},\"author\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/d0c16bd0a4dd8f82d91204f400c8d116\"},\"headline\":\"Acrobat Vulnerability Present in Apple&#8217;s Preview\",\"datePublished\":\"2009-02-24T10:14:43+00:00\",\"dateModified\":\"2009-02-24T10:14:43+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/#webpage\"},\"wordCount\":174,\"publisher\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/images\/acrobat.jpg\",\"articleSection\":[\"Apple\",\"Security &amp; Privacy\"],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/d0c16bd0a4dd8f82d91204f400c8d116\",\"name\":\"Peter James\",\"image\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#personlogo\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/0626bfb4ada576ba5aa775322329ad47?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/0626bfb4ada576ba5aa775322329ad47?s=96&d=mm&r=g\",\"caption\":\"Peter James\"},\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/author\/peter\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"description":"We recently reported on a vulnerability in Adobe Acrobat, which, while Adobe affects all platforms, Intego researchers found does not affect the Mac.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/","og_locale":"en_US","og_type":"article","og_title":"Acrobat Vulnerability Present in Apple's Preview - The Mac Security Blog","og_description":"We recently reported on a vulnerability in Adobe Acrobat, which, while Adobe affects all platforms, Intego researchers found does not affect the Mac.","og_url":"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/","og_site_name":"The Mac Security Blog","article_published_time":"2009-02-24T10:14:43+00:00","og_image":[{"url":"https:\/\/www.intego.com\/mac-security-blog\/images\/acrobat.jpg"}],"twitter_card":"summary_large_image","twitter_misc":{"Written by":"Peter James","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Organization","@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization","name":"Intego","url":"https:\/\/www.intego.com\/mac-security-blog\/","sameAs":[],"logo":{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/#logo","inLanguage":"en-US","url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png","contentUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png","width":875,"height":875,"caption":"Intego"},"image":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#logo"}},{"@type":"WebSite","@id":"https:\/\/www.intego.com\/mac-security-blog\/#website","url":"https:\/\/www.intego.com\/mac-security-blog\/","name":"The Mac Security Blog","description":"Keep Macs safe from the dangers of the Internet","publisher":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.intego.com\/mac-security-blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/#primaryimage","inLanguage":"en-US","url":"https:\/\/www.intego.com\/mac-security-blog\/images\/acrobat.jpg","contentUrl":"https:\/\/www.intego.com\/mac-security-blog\/images\/acrobat.jpg"},{"@type":"WebPage","@id":"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/#webpage","url":"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/","name":"Acrobat Vulnerability Present in Apple's Preview - The Mac Security Blog","isPartOf":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/#primaryimage"},"datePublished":"2009-02-24T10:14:43+00:00","dateModified":"2009-02-24T10:14:43+00:00","description":"We recently reported on a vulnerability in Adobe Acrobat, which, while Adobe affects all platforms, Intego researchers found does not affect the Mac.","breadcrumb":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.intego.com\/mac-security-blog\/"},{"@type":"ListItem","position":2,"name":"Acrobat Vulnerability Present in Apple&#8217;s Preview"}]},{"@type":"Article","@id":"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/#article","isPartOf":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/#webpage"},"author":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/d0c16bd0a4dd8f82d91204f400c8d116"},"headline":"Acrobat Vulnerability Present in Apple&#8217;s Preview","datePublished":"2009-02-24T10:14:43+00:00","dateModified":"2009-02-24T10:14:43+00:00","mainEntityOfPage":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/#webpage"},"wordCount":174,"publisher":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization"},"image":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/acrobat-vulnerability-present-in-apples-preview\/#primaryimage"},"thumbnailUrl":"https:\/\/www.intego.com\/mac-security-blog\/images\/acrobat.jpg","articleSection":["Apple","Security &amp; Privacy"],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/d0c16bd0a4dd8f82d91204f400c8d116","name":"Peter James","image":{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/#personlogo","inLanguage":"en-US","url":"https:\/\/secure.gravatar.com\/avatar\/0626bfb4ada576ba5aa775322329ad47?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/0626bfb4ada576ba5aa775322329ad47?s=96&d=mm&r=g","caption":"Peter James"},"url":"https:\/\/www.intego.com\/mac-security-blog\/author\/peter\/"}]}},"jetpack_featured_media_url":"","jetpack_publicize_connections":[],"jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p4VAYd-bh","amp_enabled":true,"_links":{"self":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/699"}],"collection":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/comments?post=699"}],"version-history":[{"count":0,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/699\/revisions"}],"wp:attachment":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/media?parent=699"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/categories?post=699"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/tags?post=699"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}