James_A Posted October 7, 2010 Posted October 7, 2010 Adobe have released Adobe Reader 9.4, a major update which fixes a slightly alarming 23 Security Vulnerabilities. One of these has been actively exploited in the wild over the last few weeks. Critical vulnerabilities have been identified in Adobe Reader 9.3.4 (and earlier versions) for Windows, Macintosh and UNIX, Adobe Acrobat 9.3.4 (and earlier versions) for Windows and Macintosh, and Adobe Reader 8.2.4 (and earlier versions) and Adobe Acrobat 8.2.4 (and earlier versions) for Windows and Macintosh. These vulnerabilities, including CVE-2010-2883, referenced in Security Advisory APSA10-02, and CVE-2010-2884 referenced in the Adobe Flash Player Security Bulletin APSB10-22, could cause the application to crash and could potentially allow an attacker to take control of the affected system. Adobe recommends users of Adobe Reader 9.3.4 and earlier versions for Windows, Macintosh and UNIX update to Adobe Reader 9.4. (For Adobe Reader users on Windows and Macintosh, who cannot update to Adobe Reader 9.4, Adobe has provided the Adobe Reader 8.2.5 update.) Adobe recommends users of Adobe Acrobat 9.3.4 and earlier versions for Windows and Macintosh update to Adobe Acrobat 9.4. Adobe recommends users of Adobe Acrobat 8.2.4 and earlier versions for Windows and Macintosh update to Adobe Acrobat 8.2.5. Note that the October 5, 2010 updates represent an accelerated release of the next quarterly security update originally scheduled for October 12, 2010. With this accelerated schedule, Adobe will not release additional updates for Adobe Reader and Acrobat on October 12, 2010. The next quarterly security updates for Adobe Reader and Acrobat are scheduled for February 8, 2011. Most users should be able to update via the automatic update capability now built into Adobe Reader. Just click Help > Check for Updates . Quote
Eldmannen Posted October 8, 2010 Posted October 8, 2010 Might be a good idea to use an alternative / third-party PDF reader. Quote
greenknight Posted October 9, 2010 Posted October 9, 2010 Might be a good idea to use an alternative / third-party PDF reader. Others aren't immune to problems, either - Foxit just got an update to patch 2 security vulnerabilities. A lot lot less than the 23 holes in Adobe Reader, true, but it only takes 1... Getting away from the Adobe Reader bloat is reason enough to use an alternative, you don't really need more reasons. Quote
Eldmannen Posted October 10, 2010 Posted October 10, 2010 Might be a good idea to use an alternative / third-party PDF reader. Others aren't immune to problems, either - Foxit just got an update to patch 2 security vulnerabilities. A lot lot less than the 23 holes in Adobe Reader, true, but it only takes 1... Getting away from the Adobe Reader bloat is reason enough to use an alternative, you don't really need more reasons. Even if there is software that is just as vulnerable, it would still be a good idea for some to use it. To put more entropy into the pool. To create more diversity. A more heterogeneous environment. Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.