Careers & Certifications

09:43 PM
Connect Directly
RSS
E-Mail
50%
50%

Adobe Warns Of Critical Acrobat Vulnerabilities

Adobe Systems this week issued an advisory acknowledging that vulnerabilities may exist in Windows versions of Adobe Reader and Acrobat that could crash the applications and enable remote attackers to

Adobe Systems this week issued an advisory acknowledging that vulnerabilities may exist in Windows versions of Adobe Reader and Acrobat that could crash the applications and enable remote attackers to gain complete control over affected PCs.

The flaws stem from memory corruption errors in the AcroPDF ActiveX control (AcroPDF.dll) and affect Adobe Reader, Acrobat Standard and Acrobat Professional versions 7.0.0 through 7.0.8, the San Jose, Calif.-based vendor said in a Tuesday advisory.

The vulnerabilities can only be triggered through Internet Explorer, and Adobe said it's working on an update to Adobe Reader and Acrobat 7.0.8 that will address the vulnerabilities.

Remote attackers could exploit the vulnerabilities by duping users into visiting a rigged Web page using Internet Explorer, according to the French Security Incident Response Team (FrSIRT). Adobe credited FrSIRT with discovering and reporting the flaws.

Adobe recommended that users delete the AcroPDF.dll from the Acrobat Program Files folder, but the company warned that doing so could impact enterprise workflows since it prevents PDF documents from opening in Internet Explorer.

Previous
1 of 2
Next
Comment  | 
Print  | 
More Insights
Cartoon
Slideshows
Audio Interviews
Archived Audio Interviews
Jeremy Schulman, founder of Schprockits, a network automation startup operating in stealth mode, joins us to explore whether networking professionals all need to learn programming in order to remain employed.
White Papers
Register for Network Computing Newsletters
Current Issue
Video
Twitter Feed