Sign In
​​​​​​​​​​​

​​​​
​​    


Blog
Keep up to date with the latest in technology.



​​


​​ ​
Nov 01
Foxit Enterprise Reader 9.0 Released

Foxit Enterprise Reader 9.0 has been released by Foxit Software.  Foxit Enterprise Reader is a free PDF reader designed to meet the needs of an enterprise.  It is designed to be fully compatible with Adobe Reader and provides full-fidelity viewing of PDF documents.

 

New Features in Foxit Reader 9.0

  • Better accessibility
    Use single key accelerators to access commands or perform some actions, improving the application accessibility to make the reading and working with PDF files more accessible.

  • Reflow upon magnification
    Reflow a PDF file to temporarily present it as a single column that is the width of the document pane, which makes the document easier to read when magnified on a standard monitor, without scrolling horizontally to read the text.

  • Find Command 
    Find a command by typing the command name and bring features to your fingertips with ease.

  • Help Center 
    Provide a Help Center to help users search and find online help conveniently.

  • Advanced protection – available in Foxit Reader (MSI package) only

    • Protect your enterprise data using Windows Information Protection (WIP) to guard against the potential data leakage without otherwise interfering with the employee experience.

    • Protect PDF files using the Microsoft PDF V2 IRM Specification.

    • Enhance Foxit RMS protection to make the RMS-protected files compliant with PDF 2.0.
  • Support bleed mark and overprint simulation

    • Place a bleed mark at each corner of the bleed box to indicate the PDF bleed box boundaries during printing.

    • Simulate overprinting effects for composite output.

  • Digital signatures
    • Support to export digital IDs to .fdf files.
    • Allow users to specify the font and font size and include the Foxit application version number while designing the appearance of a digital signature.

 

Improvements in Foxit Reader 9.0

  • Comment improvements
    • Summarize and export the highlighted text to a TXT file.
    • Format the text in the comment pop-up box.
    • Users can now track the comments that require further actions with new comment status – Deferred and Future, and filter comments by the original author.
  • Advanced search
    • Highlight all the text search results in PDF file.
    • Search for instances that match any of the keywords.
  • Streamline the PDF scan process 
    Streamline the PDF scan process and allow users to output the scanning results as a new PDF file or append it to an existing PDF file.
  • PDF form enhancements
    • View and print the 2D barcode in static XFA forms.
    • Retain font properties when copying and pasting text from Microsoft Word into a text form field in Foxit Reader.
    • Allow users to import form data from a CSV file.
  • Improve the ConnectedPDF features to provide a better user experience.
  • Some other ease of use enhancements.

 

Issues Addressed in Foxit Reader 9.0

  • Fixed some security and stability issues.

 

Vulnerability details

  • Addressed potential issues where the application could be exposed to Type Confusion Remote Code Execution vulnerability. This occurs when executing certain XFA JavaScript functions in crafted PDF files since the application could transform non-CXFA_Node to CXFA_Node by force without judging the data type and use the discrepant CXFA_Node directly (ZDI-CAN-5015/ ZDI-CAN-5016/ZDI-CAN-5017/ZDI-CAN-5018/ZDI-CAN-5019/ ZDI-CAN-5020/ZDI-CAN-5021/ZDI-CAN-5022/ZDI-CAN-5027/ZDI-CAN-5029/ZDI-CAN-5288).
  • Addressed potential issues where the application could be exposed to Type Confusion Remote Code Execution vulnerability. This occurs when executing certain XFA FormCalc functions in crafted PDF files since the application could transform non-CXFA_Object to CXFA_Object by force without judging the data type and use the discrepant CXFA_Object directly (ZDI-CAN-5072/ZDI-CAN-5073).
  • Addressed potential issues where the application could be exposed to Use-After-Free Remote Code Execution vulnerability due to the use of Annot object which has been freed (ZDI-CAN-4979/ZDI-CAN-4980/ZDI-CAN-4981/ZDI-CAN-5023/ZDI-CAN-5024/ZDI-CAN-5025/ZDI-CAN-5026/ZDI-CAN-5028).
  • Addressed potential issues where when the application is not running in Safe-Reading-Mode, it could be exposed to Out-of-Bounds Read Information Disclosure vulnerability with abusing the _JP2_Codestream_Read_SOT function (ZDI-CAN-4982/ZDI-CAN-5013/ZDI-CAN-4976/ZDI-CAN-4977/ZDI-CAN-5012/ ZDI-CAN-5244).
  • Addressed a potential issue where when the application is not running in Safe-Reading-Mode, it could be exposed to Out-of-Bounds Read Information Disclosure vulnerability due to abnormal memory access with abusing the lrt_jp2_decompress_write_stripe function call to open arbitrary file (ZDI-CAN-5014).
  • Addressed potential issues where the application could be exposed to Out-of-Bounds Read Information Disclosure vulnerability when rendering images with abusing the render.image function call to open a local PDF file (ZDI-CAN-5078/ZDI-CAN-5079).
  • Addressed a potential issue where when the application is not running in Safe-Reading-Mode, it could be exposed to Out-of-Bounds Read Information Disclosure vulnerability with abusing the GetBitmapWithoutColorKey function call to open an abnormal PDF file (ZDI-CAN-4978).
  • Addressed a potential issue where the application could be exposed to Out-of-Bounds Read Information Disclosure vulnerability due to uninitialized pointer with abusing the JP2_Format_Decom function call to open an abnormal PDF file (ZDI-CAN-5011).
  • Addressed potential issues where the application could be exposed to User-After-Free Remote Code Execution vulnerability due to the inconsistency of XFA nodes and XML nodes after deletion during data binding (ZDI-CAN-5091/ZDI-CAN-5092/ZDI-CAN-5289).
  • Addressed potential issues where the application could be exposed to User-After-Free Remote Code Execution vulnerability due to the use of document after it has been freed by closeDoc JavaScript (ZDI-CAN-5094/ZDI-CAN-5282/ZDI-CAN-5294/ZDI-CAN-5295/ZDI-CAN-5296).
  • Addressed a potential issue where when the application is running in single instance mode, it could be exposed to arbitrary code execution or denial of service vulnerability and fail to initialize PenInputPanel component by calling CoCreateInstance function when users open a PDF file by double click after launching the application (CVE-2017-14694).
  • Addressed a potential issue where the application could be exposed to Buffer Overflow vulnerability when opening certain EPUB file due to the invalid length of size_file_name in CDRecord in the ZIP compression data.
  • Addressed a potential issue where the application could be exposed to Type Confusion Remote Code Execution vulnerability when opening certain XFA files due to the use of discrepant data object during data binding (ZDI-CAN-5216).
  • Addressed a potential issue where the application could be exposed to Out-of-Bounds Read Information Disclosure vulnerability when the gflags app is enabled due to the incorrect resource loading which could lead to disordered file type filter (ZDI-CAN-5281).
  • Addressed a potential issue where the application could be exposed to Out-of-Bounds Read Information Disclosure vulnerability due to the calling of incorrect util.printf parameter (ZDI-CAN-5290).

 

 

Foxit Enterprise Reader is one of the applications that is managed and updated by ODS.  If you are a current customer who has requested Foxit Enterprise Reader, ODS will automatically update your version over the next few days.  The update will install silently.  No user interaction is required.  There are no additional fees or charges for ODS to update your version of Foxit Enterprise Reader. 

 

If you would like assistance managing and deploying Foxit Enterprise Reader for PCs, please contact H Tech Solutions using the URL below.​

 

Creative Commons License
H Tech Solutions Blog by Harris Schneiderman is licensed under a Creative Commons Attribution 4.0 International License.
Permissions beyond the scope of this license may be available at http://www.htechsolutions.biz/contact-us
Oct 17
Java Version 8 Update 151 Released

Java version 8 update 151 has been released by Oracle.  This is the latest version available for users who run Java on their PCs.  Java is a programming language and computing platform.  It is also a software package that runs on more than 850 million personal computers worldwide.  There are lots of applications and websites that will not work properly unless you have Java installed.

 

Bug Fixes

The following table lists the bug fixes included in JDK 8u151 release:

#JBScomponentsubcomponentDescription
1JDK-8179084hotspotgcHotSpot VM fails to start when AggressiveHeap is set
2JDK-8089283javafxwebPadding property of the select tag is incorrect in WebView
3JDK-8132675javafxwebVBox.setVgrow and HBox.setHgrow corrupt following controls when window resized
5JDK-8165909javafxwebJavaScript to Java String conversion is not correct
6JDK-8170450javafxwebCrash while loading wordpress.com in HiDPI / Retina display
7JDK-8172495javafxwebIgnore __cmake_systeminformation from web module build directory
8JDK-8172836javafxwebWebView Debug build is broken
9JDK-8176729javafxwebcom.sun.webkit.dom.NodeImpl#SelfDisposer is not called
10JDK-8178319javafxwebBuild sqlite3 from source
11JDK-8178360javafxwebBuild and integrate ICU from source
12JDK-8178440javafxwebBuild libxml2 and libxslt from source
13JDK-8179673javafxwebJVM Crash in WebPage.setBackgroundColor() during webpage navigation (Non Public API)
14JDK-8180825javafxwebJavafx WebView fails to render pdf.js
15JDK-8183292javafxwebUpdate to 604.1 version of WebKit
16JDK-8184448javafxwebCrash while loading gif images with more frames
17JDK-8185132javafxwebwindow.requestAnimationFrame API is not working
19JDK-8029659security‑libsjava.securityKeytool, print key algorithm of certificate or key entry
20JDK-8154015security‑libsjava.securityApply algorithm constraints to timestamped code
21JDK-8171319security‑libsjava.securitykeytool should print out warnings when reading or generating cert/cert req using weak algorithms
22JDK-8177569security‑libsjava.securitykeytool should not warn if signature algorithm used in cacerts is weak
23JDK-8157561security‑libsjavax.cryptoShip the unlimited policy files in JDK Updates
24JDK-8167485toolsvisualvmIntegrate new version of Java VisualVM based on VisualVM 1.3.9 into JDK

Oracle Java SE Executive Summary

This Critical Patch Update contains 22 new security fixes for Oracle Java SE.  20 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials. 

 

If you would like assistance managing and deploying Java for PCs, please contact H Tech Solutions using the URL below.

 

Creative Commons License
H Tech Solutions Blog by Harris Schneiderman is licensed under a Creative Commons Attribution 4.0 International License.
Permissions beyond the scope of this license may be available at http://www.htechsolutions.biz/contact-us
Oct 16
​A​dobe Flash Player ​Version 27.0.0.170 Released

A​dobe Flash Player ​version 27.0.0.170 has been released by Adobe Systems.  Adobe Flash Player is a cross-platform browser-based application runtime that is required for viewing of certain applications, content, and videos.

 

Security Updates

Adobe has released a security update for Adobe Flash Player for Windows. This update addresses a critical type confusion vulnerability that could lead to code execution.

Adobe is aware of a report that an exploit for CVE-2017-11292 exists in the wild, and is being used in limited, targeted attacks against users running Windows.

  • Adobe recommends users of the Adobe Flash Player Desktop Runtime for Windows update to Adobe Flash Player 27.0.0.170.

  • Adobe Flash Player installed with Google Chrome will be automatically updated to the latest Google Chrome version, which will include Adobe Flash Player 27.0.0.170 for Windows.

  • Adobe Flash Player installed with Microsoft Edge and Internet Explorer 11 for Windows 10 and 8.1 will be automatically updated to the latest version, which will include Adobe Flash Player 27.0.0.170.

 

Vulnerability Details

 

Vulnerability CategoryVulnerability ImpactSeverityCVE Number
Type ConfusionRemote Code ExecutionCriticalCVE-2017-11292

 

 

Adobe Flash Player is one of the applications that is managed and updated by ODS.  If you are a current customer, ODS will automatically update your version of Adobe Flash Player over the next few days.  ODS will deploy the ActiveX version.  This ensures that Adobe Flash Player will function with web browsers including Internet Explorer, Microsoft Edge, and Chrome.  The update will install silently.  No user interaction is required.  There are no additional fees or charges for ODS to update your version of Adobe Flash Player. 

 

Creative Commons License
H Tech Solutions Blog by Harris Schneiderman is licensed under a Creative Commons Attribution 4.0 International License.
Permissions beyond the scope of this license may be available at http://www.htechsolutions.biz/contact-us
Oct 10
​A​dobe Flash Player ​Version 27.0.0.159 Released

A​dobe Flash Player ​version 27.0.0.159 has been released by Adobe Systems.  Adobe Flash Player is a cross-platform browser-based application runtime that is required for viewing of certain applications, content, and videos.

 

Fixed Issues

  • Audio device selection not working when there are multiple devices with same name(FP-4198585)

  • Content freezes while switching the tabs on Firefox (FP-4198571, FP-4198555)

  • Video stops rendering after minimizing/restoring the Firefox browser window.

 

 Known Issues

  • EVENT.ACTIVATE not triggered on chrome when a tab is dragged in and out of the Chrome's window(FP-4198532)
  • Flash Player settings panel become unresponsive when hardware acceleration is turned off on Firefox

  • Flash Player 64 bit (flash.ocx) 27.0.0.130 quits unexpectedly (FP-4198598).

 

Adobe Flash Player is one of the applications that is managed and updated by ODS.  If you are a current customer, ODS will automatically update your version of Adobe Flash Player over the next few days.  ODS will deploy the ActiveX version.  This ensures that Adobe Flash Player will function with web browsers including Internet Explorer, Microsoft Edge, and Chrome.  The update will install silently.  No user interaction is required.  There are no additional fees or charges for ODS to update your version of Adobe Flash Player. 

 

Creative Commons License
H Tech Solutions Blog by Harris Schneiderman is licensed under a Creative Commons Attribution 4.0 International License.
Permissions beyond the scope of this license may be available at http://www.htechsolutions.biz/contact-us
Sep 28
ODS Ending Support for Android 4.4

​Starting in September 2017, ODS will no longer support Android 4.4. As a consequence, ODS customers will not be able to enroll or update any Androd 4.4 devices.  H Tech Solutions recommends updating Android 4.4 to Android 8.0. 

 

If you are interested in upgrading from Android 4.4, please contact H Tech Solutions for a free consultation.

 

Creative Commons License
H Tech Solutions Blog by Harris Schneiderman is licensed under a Creative Commons Attribution 4.0 International License.
Permissions beyond the scope of this license may be available at http://www.htechsolutions.biz/contact-us
Sep 28
ODS Ending Support for iOS 8.0

​Starting in September 2017, ODS will no longer support iOS 8.0 platforms. As a consequence, ODS customers will not be able to enroll or update any iOS 8.0 devices.  H Tech Solutions recommends updating iOS 8.0 to iOS 11.0. 

 

If you are interested in upgrading from iOS 8.0, please contact H Tech Solutions for a free consultation.

 

Creative Commons License
H Tech Solutions Blog by Harris Schneiderman is licensed under a Creative Commons Attribution 4.0 International License.
Permissions beyond the scope of this license may be available at http://www.htechsolutions.biz/contact-us
Sep 19
Announcing iOS 11.0 Support for ODS

ODS is now fully compatible with this latest version of Apple’s mobile operating system, iOS 11.0.  All the existing ODS features currently available for managing iOS devices will continue to work seamlessly as users upgrade their devices to iOS 11.0.  Apple began deploying iOS 11.0 to users on September 19, 2017.

 

These new features will become available automatically.  There will be no impact to the service or downtime during the update.  There is no need to update the ODS software running on your device to take advantage of these new features.

 

Creative Commons License
H Tech Solutions Blog by Harris Schneiderman is licensed under a Creative Commons Attribution 4.0 International License.
Permissions beyond the scope of this license may be available at http://www.htechsolutions.biz/contact-us
Sep 12
Adobe Flash Player Version 27.0.0.130 Released

A​dobe Flash Player ​version 27.0.0.130 has been released by Adobe Systems.  Adobe Flash Player is a cross-platform browser-based application runtime that is required for viewing of certain applications, content, and videos.

 

Fixed Issues

  • The application will behave abnormally when spacebar is pressed in the Text Field.(FP-4198253)

  • [Win10] Context menu displayed with Offset when Flash Player movie fullscreen on Chrome(FP-4198406)

 

 Known Issues

  • Memory leak is observed when using baseline_constrained profile on Firefox 55 onwards (FP-4198562)
  • Invalid stageWidth and stageHeight is observed on Firefox 55 onwards with render mode as direct and async drawing enabled.

 

Security Updates

Adobe has released security updates for Adobe Flash Player for Windows. These updates address two critical memory corruption vulnerabilities that could lead to code execution.

  • Adobe recommends users of the Adobe Flash Player Desktop Runtime for Windows update to Adobe Flash Player 27.0.0.130

  • Adobe Flash Player installed with Google Chrome will be automatically updated to the latest Google Chrome version, which will include Adobe Flash Player 27.0.0.130 for Windows.

  • Adobe Flash Player installed with Microsoft Edge and Internet Explorer 11 for Windows 10 and 8.1 will be automatically updated to the latest version, which will include Adobe Flash Player 27.0.0.130.

 

Vulnerability Details

 

Vulnerability CategoryVulnerability ImpactSeverityCVE Numbers
Memory CorruptionRemote Code Execution
CriticalCVE-2017-11281
Memory CorruptionRemote Code ExecutionCriticalCVE-2017-11282

 

Adobe Flash Player is one of the applications that is managed and updated by ODS.  If you are a current customer, ODS will automatically update your version of Adobe Flash Player over the next few days.  ODS will deploy the ActiveX version.  This ensures that Adobe Flash Player will function with web browsers including Internet Explorer, Microsoft Edge, and Chrome.  The update will install silently.  No user interaction is required.  There are no additional fees or charges for ODS to update your version of Adobe Flash Player. 

Creative Commons License
H Tech Solutions Blog by Harris Schneiderman is licensed under a Creative Commons Attribution 4.0 International License.
Permissions beyond the scope of this license may be available at http://www.htechsolutions.biz/contact-us
Aug 29
Announcing Remote Assistance for iOS Devices

H Tech Solutions is pleased to announce support for remote assitance of iOS mobile devices including iPhones and iPads.  This feature has been availble for Windows PCs since ODS launched 5 years ago.  Because of our strong commitment to support multiple platforms, we are very excited that the service has evolved to include remote assistance for iOS as well.

 

ODS Remote Assitance supports the following features for iOS:

  • Check device status:
    • CPU
    • Memory
    • Battery health
    • Storage
    • Manufacturer
    • Model number
    • Serial number
    • Operating system version
  • Screen sharing
  • Instant messaging (IM)
  • Transferring files to the device.
  • Pushing Wi-Fi settings to the device
  • Automatic AES 256-bit encryption for all sessions

ODS Remote Assistance is supported on iOS 11.0 and above.  Users running older versions of iOS will need to upgrade in order to take advantage of remote assistance.  ODS remote assistance is avaialble for all ODS subscribers.  There is no additional charge for this new capablity.

 

If you need assistance setting up or troubleshooting an issue with your iOS device, please contact H Tech Solutions using the URL below.

 

Creative Commons License
H Tech Solutions Blog by Harris Schneiderman is licensed under a Creative Commons Attribution 4.0 International License.
Permissions beyond the scope of this license may be available at http://www.htechsolutions.biz/contact-us
Aug 28
Foxit Enterprise Reader Version 8.3.2 Released

Foxit Enterprise Reader 8.3.2has been released by Foxit Software.  Foxit Enterprise Reader is a free PDF reader designed to meet the needs of an enterprise.  It is designed to be fully compatible with Adobe Reader and provides full-fidelity viewing of PDF documents.

 

Issues Addressed in Foxit Reader 8.3.2

  • Fixed an issue where Foxit Reader PDF Printer in version 8.3.1 failed to print certain items normally. 
  • Addressed a potential issue where when the application is not running in Safe-Reading-mode, it could be exposed to command injection vulnerability with abusing the app.launchURL JavaScript call to execute a local program. (ZDI-CAN-4724)
  • Addressed a potential issue where when the application is not running in Safe-Reading-Mode, it could be exposed to an Arbitrary File Write vulnerability with abusing the this.saveAs function call to drop a file to the local file system. (ZDI-CAN-4518)
  • Addressed a potential issue where when the application is not running in Safe-Reading-Mode, it could be exposed to an Arbitrary Write vulnerability with abusing the createDataObject function call to create arbitrary executable file in the local file system.
  • Addressed a potential issue where when the application is not running in Safe-Reading-Mode, it could be exposed to command injection vulnerability with abusing the xfa.host.gotoURL function call to open arbitrary executable file. (ZDI-CAN-5030)

 

 

 

Foxit Enterprise Reader is one of the applications that is managed and updated by ODS.  If you are a current customer who has requested Foxit Enterprise Reader, ODS will automatically update your version over the next few days.  The update will install silently.  No user interaction is required.  There are no additional fees or charges for ODS to update your version of Foxit Enterprise Reader. 

 

If you would like assistance managing and deploying Foxit Enterprise Reader for PCs, please contact H Tech Solutions using the URL below.

 

Creative Commons License
H Tech Solutions Blog by Harris Schneiderman is licensed under a Creative Commons Attribution 4.0 International License.
Permissions beyond the scope of this license may be available at http://www.htechsolutions.biz/contact-us
1 - 10Next
​​

 ‭(Hidden)‬ Blog Tools

​​ ​​ ​​​​​​​​​​
  
Edit
  
 
  
 
  
 
  
 
  
 
  
 
​​ ​​​​

​​
​ ​