SCCM package for Adobe 0-day exploit
Since Adobe is not going to release an update for this (http://www.adobe.com/support/security/advisories/apsa09-01.html) soon, and, initially only for version 9.x, I'm looking for a way to mitigate now, using SMS or SCCM to push out the following RegHack:
[left]• Utilize SMS to make the following registry settings:[/left][font="courier new"][font="courier new"][left]o HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\9.0\JSPrefs\bEnableJS[/left][font="courier new"][font="courier new"]
oChange the value to 0. This will disable JavaScript
However, I would need something that would work with 7, 8, and 9, depending on what's on the computer (and, for Reader and Pro or Standard, there could be TWO different versions), and, for both Reader and Pro or Standard products, not just Reader.
Does anyone have something that they could share?
Thanks!
o
0 Comments
[ + ] Show comments
Answers (1)
Please log in to answer
Posted by:
anonymous_9363
15 years ago
Well a script-based solution would be an obvious candidate. It could detect which products are installed (using either ProductCode, file versions, or any combination of same and branch accordingly. And no, sorry, I don't have a sample.
Rating comments in this legacy AppDeploy message board thread won't reorder them,so that the conversation will remain readable.
