How Do I... Secure Adobe Reader to Prevent Malware
Posted: April 12, 2010
Like other 3rd party software (Adobe Flash, Apple QuickTime, Sun Java), Adobe Reader should be kept up-to-date with security updates as they are released. However, Adobe Reader can be configured to BLOCK attacks delivered by malicious PDF files.
Note: These steps are written for Adobe Reader 9. If you have the full version of Adobe Acrobat 9 you should secure it as well with these steps. If you have an older version (pre-9) of Adobe Acrobat, these steps may not match exactly. But you would still want to secure these applications as best you can.
- Open Adobe Reader 9.
- From the Edit menu choose Preferences.
- In the Categories list, choose JavaScript.
Note: Past vulnerabilities in Adobe Reader have included exploits via JavaScript. You shouldn't need JavaScript in a PDF. If you open a PDF that has JavaScript, you will be prompted to turn it on. You can refuse to turn it on and open the PDF without it. - Un-check the Enable Acrobat JavaScript box.
- In the Categories list, choose Multimedia Trust (legacy).
Note: The default settings here allow multimedia files to play automatically. By changing the settings for the multimedia players to "prompt" you, you can choose not to, especially if you weren’t expecting a media file. - Highlight the Permission for Windows Built-In Player is set to Always choice.
- From the Change permission for selected multimedia player to drop down list, choose Prompt.
- Repeat steps 6 - 7 with the remaining multimedia choices.
- In the Categories list, choose Security (Enhanced).
- Check the Enabled Enhanced Security box.
- In the Categories list, choose Trust Manager.
- Un-check the Allow opening of non-PDF file attachments with external applications box.
- Click OK to close Preferences.
- Adobe Reader is secured and is ready to use.
