Home > slashdot > Adobe Security Chief Defends JavaScript Support

Adobe Security Chief Defends JavaScript Support

January 5th, 2010 01:00 admin Leave a comment Go to comments

Trailrunner7 writes “Despite the fact that the majority of [PDF-related] malware exploits use JavaScript to trigger an attack in Adobe’s PDF Reader product, the company says it’s impossible to completely remove JavaScript support without causing major compatibility problems. In a Q&A on Threatpost , Adobe security chief Brad Arkin says the removal of JavaScript support is a non-starter because it’s an integral part of how users do form submissions. ‘”Anytime you’re working with a PDF where you’re entering information, JavaScript is used to do things like verify that the date you entered is the right format. If you’re entering a phone number for a certain country it’ll verify that you’ve got the right number of digits. When you click ‘submit’ on the form it’ll go to the right place. All of this stuff has JavaScript behind the scenes making it work and it’s difficult to remove without causing problems,” Arkin explained.”‘

Source: Adobe Security Chief Defends JavaScript Support

Related Articles:

  1. Adobe Launches Sandboxed Reader X
  2. Adobe Revoking Code Signing Certificate Used To Sign Malware
  3. Adobe Introduces the Paid Security Fix
  4. No JavaScript Needed For New Adobe Exploits
  5. Adobe CTO Defends Flash Against Apple, HTML5
blog comments powered by Disqus