Threat Level: green Handler on Duty: Rick Wanner

SANS ISC: InfoSec Handlers Diary Blog - Security update available for Adobe Reader and Acrobat InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Security update available for Adobe Reader and Acrobat

Published: 2010-04-13
Last Updated: 2011-01-25 00:00:02 UTC
by Adrien de Beaupre (Version: 1)
0 comment(s)

Adobe has also released updates for their Reader and Acrobat products. The advisory is available here: http://www.adobe.com/support/security/bulletins/apsb10-09.html

" Critical vulnerabilities have been identified in Adobe Reader 9.3.1 (and earlier versions) for Windows, Macintosh, and UNIX, Adobe Acrobat 9.3.1 (and earlier versions) for Windows and Macintosh, and Adobe Reader 8.2.1 (and earlier versions) and Adobe Acrobat 8.2.1 (and earlier versions) for Windows and Macintosh. These vulnerabilities could cause the application to crash and could potentially allow an attacker to take control of the affected system."  Essentially opening a PDF file within an affected version of the products can possibly lead to arbitrary code execution. The updates cover the following CVE entries: CVE-2010-0190, CVE-2010-0191, CVE-2010-0192, CVE-2010-0193, CVE-2010-0194, CVE-2010-0195, CVE-2010-0196, CVE-2010-0197, CVE-2010-0198, CVE-2010-0199, CVE-2010-0201, CVE-2010-0202, CVE-2010-0203, CVE-2010-0204, CVE-2010-1241.

Cheers,
Adrien de Beaupré
Intru-shun.ca Inc.

0 comment(s)
Diary Archives