IT News & Technology update

Provide comprehensive update related to Computer, technology, software, anti virus and another electric device

Security updates for Adobe Reader and Acrobat have been released

Written by IT News on 4:02 AM

Adobe has released security updates for all versions of its Reader and Acrobat products, running on all supported operating systems, an exception is version 7.1.1 for Mac OS X, which is still fragile. Patches address two serious remote code execution bugs, which have been known since the end of April.

On April 29 we reported that a hacker will be reviewed by the online handle of Arr1val had published proof-of-concept exploit for two remote code execution vulnerabilities in Adobe Reader and Acrobat. The investigation of incidents, the Adobe security team concluded that a defect that all versions of the products for all operating systems, while restricted to Linux versions.

"A critical vulnerability has been identified in Adobe Reader 9.1 and Acrobat 9.1 and earlier versions. The vulnerability (CVE-2009-1492) would lead to a crash and can give an attacker control over the system. A second vulnerability also, which seem to affect Adobe Reader for UNIX only (CVE-2009-1493). These themes are remote exploit ability "Adobe advisory says.

Both vulnerabilities can be exploited by creating malformed PDF files, a malicious JavaScript based load. To completely disable Java Script in the products was approved as a temporary solution, although it was not applicable in certain environments where the functions required.

At a time when malicious PDF files are widely used, security professionals question the Adobe patch deployment schedule. These vulnerabilities have been patched in two weeks time after discovery, but even if they are not actively used in the game, there is a long time by some standards.

And this was a nice thing, like a similar critical vulnerability that was announced in February as a 0-day, and then employed by computer-related villains in their attacks were not involved in more than three weeks. Moreover, the vulnerability was exploit ability even with JavaScript disabled, so caution and a good antivirus as the only option for protection.

The latest updates to Adobe Reader and Acrobat are 9.1.1, 8.1.5 and 7.1.2, respectively. Users are encouraged to upgrade to these versions immediately download links for their own operating systems which are in the Adobe Security Advisory APSA09-02.

Related Posts by Categories



Widget by Hoctro | Jack Book
  1. 0 comments: Responses to “ Security updates for Adobe Reader and Acrobat have been released ”

Search This Blog

Ads and Sponsored by:



Want to subscribe?

Subscribe in a reader.