Jump to content

Recommended Posts

Posted

Adobe have released Adobe Reader 9.4, a major update which fixes a slightly alarming 23 Security Vulnerabilities. One of these has been actively exploited in the wild over the last few weeks.

Critical vulnerabilities have been identified in Adobe Reader 9.3.4 (and earlier versions) for

Windows, Macintosh and UNIX, Adobe Acrobat 9.3.4 (and earlier versions) for Windows and

Macintosh, and Adobe Reader 8.2.4 (and earlier versions) and Adobe Acrobat 8.2.4 (and earlier

versions) for Windows and Macintosh. These vulnerabilities, including CVE-2010-2883,

referenced in Security Advisory APSA10-02, and CVE-2010-2884 referenced in the Adobe Flash

Player Security Bulletin APSB10-22, could cause the application to crash and could potentially

allow an attacker to take control of the affected system.

Adobe recommends users of Adobe Reader 9.3.4 and earlier versions for Windows, Macintosh

and UNIX update to Adobe Reader 9.4. (For Adobe Reader users on Windows and Macintosh,

who cannot update to Adobe Reader 9.4, Adobe has provided the Adobe Reader 8.2.5 update.)

Adobe recommends users of Adobe Acrobat 9.3.4 and earlier versions for Windows and

Macintosh update to Adobe Acrobat 9.4. Adobe recommends users of Adobe Acrobat 8.2.4 and

earlier versions for Windows and Macintosh update to Adobe Acrobat 8.2.5.

Note that the October 5, 2010 updates represent an accelerated release of the next quarterly

security update originally scheduled for October 12, 2010. With this accelerated schedule, Adobe

will not release additional updates for Adobe Reader and Acrobat on October 12, 2010. The next

quarterly security updates for Adobe Reader and Acrobat are scheduled for February 8, 2011.


Most users should be able to update via the automatic update capability now built into Adobe Reader.

Just click Help > Check for Updates

.

Posted

Might be a good idea to use an alternative / third-party PDF reader.

Others aren't immune to problems, either - Foxit just got an update to patch 2 security vulnerabilities. A lot lot less than the 23 holes in Adobe Reader, true, but it only takes 1...

Getting away from the Adobe Reader bloat is reason enough to use an alternative, you don't really need more reasons.

Posted

Might be a good idea to use an alternative / third-party PDF reader.

Others aren't immune to problems, either - Foxit just got an update to patch 2 security vulnerabilities. A lot lot less than the 23 holes in Adobe Reader, true, but it only takes 1...

Getting away from the Adobe Reader bloat is reason enough to use an alternative, you don't really need more reasons.

Even if there is software that is just as vulnerable, it would still be a good idea for some to use it.

To put more entropy into the pool. To create more diversity. A more heterogeneous environment.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...