Jump to content
  • 0
Sign in to follow this  
Rick2

Patch for exploit in Nitro PDF?

Suggestion

Rick2

Hello

 

I was reading this story regarding some exploits to your software do you have any information on when this might be patched and will older versions get the patch as well?

 

https://www.bleepingcomputer.com/news/security/nitro-pdf-pro-to-get-micropatches-for-7-potential-rce-bugs/

Share this post


Link to post
Share on other sites

4 replies to this suggestion

Recommended Posts

Martin B

The information policy of Nitro is a real disaster. I´m real frustrated as a long-time user.

Have a look how bad Nitro reacts so long:  https://blog.talosintelligence.com/2019/10/vuln-spotlight-Nitro-PDF-RCE-bugs-sept-19.html

The biggest technical online-site in germany reports about this:  https://www.heise.de/security/meldung/Neue-Sicherheitsluecken-in-Nitro-PDF-Pro-letzter-Patch-kam-2017-4554689.html 

Real bad marketing for this otherwise good tool.

All in all it´s a absolute catastrophe 

Kind regards 

Martin

Edited by Martin B

Share this post


Link to post
Share on other sites
AllainU

Hello @Martin B @Rick2,

Thank you for reaching out to us through our Community Forums!

Please allow us to reach-out to our engineering team with regard to this topic.

Rest assured we will get back to you once we have an update.

Have a nice day.

Share this post


Link to post
Share on other sites
Martin B

Dear AllainU!

After waiting more than a week there is still no response. I don´t expect a software-update in this short time. But I think it would be nice a answer like "Yes, we are working on a update" or something like that. As I described in my previous posting the reaction of Nitro is quite a disaster.

We will now deactive all Nitro-Licence  in our company and give our clients the  same recommandation. There are enough alternatives, it´s not necessary to use unsecure PDF-Software like Nitro.

Really frustrating 

Martin

 

 

Share this post


Link to post
Share on other sites
AllainU

Hello Everyone.

Please accept our sincere apologies for any inconvenience this issue has caused.

At the moment, our Security Team has released this statement in this page https://www.gonitro.com/nps/security/updates

For more updates, please visit the above page from time to time.

Again, our apologies for this inconvenience.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use.