www.winhelp.us

Content

Tip: keyboard shortcut Ctrl+F searches in the page contents

Securing Adobe Reader

Last modified: 2011-12-25 12:46:55 EET

Adobe Reader (also known as Acrobat Reader) is a free viewer for PDF (portable document format) files. It has been plagued by viruses and other malware for several years now; mainly because its numerous security bugs have enabled loading malicious documents on web pages without user consent. In November, 2010, Adobe released Reader X (version 10) that includes sandboxing (running the program in protected mode, so that malicious scripts and programs can not alter other contents on user's computer while reading the PDF file).

There are some simple steps to stop Adobe Reader misuse.

The very first step is to download the latest version from Adobe's web page. This ensures that you will get two very important features in the program - protected mode and automatic updates. You can also visit winhelp.us home page or check out Plug-in Check on the right to see if the installed version is up-to-date.
To keep Adobe Reader updated automatically, use the free program called Secunia PSI.

Open Adobe Reader's preferences by using keyboard shortcut Ctrl+K or by opening Edit menu and clicking Preferences...:

For Adobe Reader X, open the General tab on the left. Then ensure that the Enable Protected Mode at startup box is checked. This is enabled by default in Adobe Reader 10.
The setting means that Adobe Reader runs in a so-called "sandbox" and a malicious program or script is unable to get outside the Reader program and therefore it is unable to infect or attack your computer.

Click the JavaScript tab on the left. Then clear the Enable Acrobat JavaScript check box. This makes sure that malicious or hijacked web pages are not able to misuse JavaScript language for infecting or taking over your computer.

Move on to the Security tab on the left. Make sure that the Verify signatures when the document is opened box is checked. This will stop opening PDF files with fake digital signatures.

Now open the Security (Enhanced) tab. Ensure that the Enable Enhanced Security box is checked.

Click the Trust Manager tab on the left. Clear the Allow opening of non-PDF file attachments with external applications box. This is a very important step as several botnets are using PDF files for opening unpatched programs and infecting victim's computers with trojans that steal personal information such as login names and passwords.
Then check the Load trusted root certificates from an Adobe server box. This will keep information about certificate authorities up-to-date and prevent opening files signed with fake security certificates.

And finally, open the Updater tab. If you do not have this tab, your Adobe Reader is not the latest version - close Preferences window by clicking OK, then open Help menu and click Check for updates (or just download and install the latest version from http://get.adobe.com/reader).

To change options on this tab you need administrative rights on your Windows computer!

Click to select the Automatically install updates option. This will ensure that you are always using the latest, fully patched version of Adobe Reader.

You might see the red Adobe Updater icon in Taskbar's Notification Area in the future while Adobe Reader updates are being downloaded and installed. Always let the process finish, its work; you can safely continue doing your work.

To add an extra protection layer from even unpatched security bugs, please read our Microsoft EMET article!

And that's it - your Adobe Reader is now more secure!

 Comments? Suggestions? Ideas? Let me know! 

Your name (public):

Your e-mail (will not be displayed):

Title:

Notify me of new comments to this page:

Your comments/suggestions/ideas (no HTML code!)
winhelp.us owners reserve the right to remove or not publish comments that they find unacceptable because of strong language, inappropriate contents, advertising or spamming.
winhelp.us Privacy Policy