Technology briefs

Adobe PDF bug jeopardizes security

The Adobe PDF could be used to compromise a system running on Microsoft Windows XP, Adobe confirmed last week week.

Remote code embedded in a PDF could be executed in Versions 8.1 and earlier of Adobe Reader, Adobe Acrobat or Acrobat Elements. Adobe Acrobat 3D is also vulnerable. All those programs must be used in conjunction with Internet Explorer 7 to trigger the exploitation.

According to the SANS Institute, which announced news of the vulnerability last month, the vulnerability stems from the failure of the software to properly handle Web addresses embedded in the document. A malicious hacker could embed a PDF with a URL that could start other programs on the machine or execute other operations.

Adobe has not yet issued a patch correcting the problem, but it has offered instructions on how to modify the Windows XP registry settings to correct the vulnerability.

Metal shavings could be the cause of failures

Experiencing a mysterious surge in equipment failure in your data center? The culprit may be microscopic metallic shavings, NASA Goddard Space Flight Center researchers warned. “For data centers, it is a serious problem,” said NASA chief parts engineer Henning Leidecker, who is part of a research team tracking the problem. “More serious than many know about.”

The researchers are looking at how aging or inexpensively produced hardware can shed tiny conductive filaments of zinc typically less than a few millimeters long, known as zinc whiskers. Because they are conductive, such whiskers can short-circuit electronic equipment if they gather in sensitive regions of the equipment.

Usually it can take decades for a data center to collect a dangerous number of whiskers, and as many data centers age, the risk will

Zinc whiskers may come from a variety of sources. They mostly come from raised-floor tiles. Screws, nuts, washers and bus rails can be sources, too. The whiskers may be created through the movement of equipment or floor tiles, nicks and scrapes to the material, unequal thermal expansion, bending of the material or defects in the manufacturing process.

Despite their diminutive stature, the filings can cause big problems. Colorado reported that in 2005, a data center had been off-line for 30 days because zinc whiskers from floor tiles were blown by the air conditioning system into computers, shorting many of them.

GAO calls for additional testing of voting machines

The Government Accountability Office called for additional testing of voting machines used during the 2006 Florida general election to provide further assurance that the technology used did not contribute to the undervote in the state’s 13th District. The agency issued its statement to a special congressional task force now studying why that election produced an unusually large number of ballots that were cast but did not show a valid candidate choice.

GAO issued the information in an Oct. 2 statement to the House Administration Committee’s Task Force on Florida’s District 13 Election.

Nabajyoti Barkakati, GAO’s senior-level technologist for applied research and methods, conducted the election system analysis. He found that prior tests and reviews of Sarasota County’s voting systems didn’t completely rule out the possibility that the voting systems contributed to the undervote.

Sarasota County, part of Florida’s 13th District, used iVotronic direct-recording electronic voting systems (DREs) and the Unity election management system, manufactured by Election Systems and Software. The GAO statement added that additional tests might not completely eliminate the possibility that the machines helped cause the undervote.

“Although the proposed tests could help provide increased assurance, they would not provide absolute assurance that the iVontronic DREs did not cause the large undervote in Sarasota County,” GAO said. Absolute assurance is impossible, Barkakati said, because tests cannot recreate the election conditions.

Read more technology news on Government Computer News’ Web site at

The Fed 100

Read the profiles of all this year's winners.


  • Then-presidential candidate Donald Trump at a 2016 campaign event. Image: Shutterstock

    'Buy American' order puts procurement in the spotlight

    Some IT contractors are worried that the "buy American" executive order from President Trump could squeeze key innovators out of the market.

  • OMB chief Mick Mulvaney, shown here in as a member of Congress in 2013. (Photo credit Gage Skidmore/Flickr)

    White House taps old policies for new government makeover

    New guidance from OMB advises agencies to use shared services, GWACs and federal schedules for acquisition, and to leverage IT wherever possible in restructuring plans.

  • Shutterstock image (by Everett Historical): aerial of the Pentagon.

    What DOD's next CIO will have to deal with

    It could be months before the Defense Department has a new CIO, and he or she will face a host of organizational and operational challenges from Day One

  • USAF Gen. John Hyten

    General: Cyber Command needs new platform before NSA split

    U.S. Cyber Command should be elevated to a full combatant command as soon as possible, the head of Strategic Command told Congress, but it cannot be separated from the NSA until it has its own cyber platform.

  • Image from Shutterstock.

    DLA goes virtual

    The Defense Logistics Agency is in the midst of an ambitious campaign to eliminate its IT infrastructure and transition to using exclusively shared, hosted and virtual services.

  • Fed 100 logo

    The 2017 Federal 100

    The women and men who make up this year's Fed 100 are proof positive of what one person can make possibile in federal IT. Read on to learn more about each and every winner's accomplishments.

Reader comments

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

More from 1105 Public Sector Media Group