Adobe Acrobat vulnerabilities….



According to The Register among other sources, there is a vulnerability in all Acrobat and Reader software prior to the following safe release numbers: Windows and Mac Reader users please install 7.0.3 or 6.0.4 to be fixed (all other 7 series and 6 series versions are vulnerable). Acrobat users on Windows or Mac should update to either 7.0.3, 6.0.4 or 5.0.10 (again, any other 7.x 6.x or 5.x version is vulnerable.) Linux and Solaris reader users should upgrade to 7.0.1 to be secure.



It sounds like a specially crafted pdf file could allow the attacker to run arbitrary code on the target system. I would think that it could do no worse than run with the user priviliges of the user running Reader or Acrobat (good lesson on never running applications as administrator.) I’m not certain how application permissions work under Windows or Mac (do they run AS the user that started them?), but under Unix-ish systems that should mitigate the threat. Install the update anyway!

Adobe has the advisory on their site as well.

   Send article as PDF   

Similar Posts