1 Reply Latest reply on Mar 25, 2011 3:32 AM by Shoggi1105

    APSA11-01 - Reader X - Protected Mode unsupported Citrix and no release until June 2011

    Shoggi1105 Level 1

      HI,

       

      how does you handle the support for Citrix on Terminalserver in such situation?

       

      The overall pain is that Adobe release a Security advisories but will only deliver in June 2011 the update for Reader X.

       

      Official info:

      Because Adobe Reader X Protected Mode would prevent an exploit of this kind from executing, we are currently planning to address this issue in Adobe Reader X for Windows with the next quarterly security update for Adobe Reader, currently scheduled for June 14, 2011

       

      http://blogs.adobe.com/psirt/2011/03/security-advisory-for-adobe-flash-player-adobe-reader -and-acrobat-apsa11-01.html

      http://www.adobe.com/support/security/advisories/apsa11-01.html

       

      The really bad strategy for Enterprise customers on Citrix is .. that it does mean we need to run supported but unsecure for more then 2 months for 5000 users. The problem is that Reader X is not supported on Citrix with protected mode. This is on page 64 on Enterprise Admin Guide:

       

      When Adobe Reader is used with Protected Mode enabled (the default), Citrix is not supported.

      Administrators should disable and lock Protected Mode.

       

      http://kb2.adobe.com/cps/837/cpsid_83709/attachments/Acrobat_Enterprise_Administration.pdf

       

      Why does Adobe not think and support their Enterprise customer deployments and think there is no need to deploy inline with the other updates e. g. 9.x???

       

      This goes to the strategy to go away on Enterprise environments from Adobe as you can't argue to use it this way and be unsecure.

       

      Lukas