Adobe has released its second quarterly security update, which addresses 29 vulnerabilities in its Reader and Acrobat products. Exploitation of the majority of these flaws could result in arbitrary code execution and one of them is already being actively targeted in Web attacks since last week.On October 8, Adobe ann... |
14 October 2009
09:32 GMT |
 |
|
Adobe has released a scheduled update for its Reader and Acrobat products in order to fix a remotely exploitable vulnerability, which is actively being targeted in attacks. The flaw allows attackers to execute arbitrary code by embedding malformed Flash streams into PDF documents. Almost a week ago, security experts... |
1 August 2009
07:02 GMT |
|
|
Adobe has officially started its quarterly update cycle for its Reader and Acrobat products yesterday, by addressing thirteen flaws. This is part of the company's code-hardening efforts, which were announced a few weeks ago. The Adobe Reader and Acrobat are currently deployed in millions of computers around the... |
10 June 2009
08:10 GMT |
|
|
In light of the avalanche of critical 0-day vulnerabilities identified in its Adobe Reader and Acrobat products for the past year, Adobe wants to strengthen its security by reviewing critical areas of the older code base. A quarterly security update cycle will also be introduced starting this summer. "Since February... |
21 May 2009
08:27 GMT |
|
|
Adobe has released security updates for all versions of its Reader and Acrobat products, running on all supported operating systems, an exception being the 7.1.1 version on Mac OS X, which remains vulnerable. The patches address two serious remote code execution bugs, which have been known since the end of April. On... |
14 May 2009
08:37 GMT |
|
|
A hacker calling himself Arr1val has published proof-of-concept exploit codes for two 0-day vulnerabilities affecting Adobe Reader and Acrobat. The company has already confirmed one of them and strongly suggests disabling JavaScript in the products until a patch will be made available. The flaws are classified by Se... |
29 April 2009
05:27 GMT |
|
|
The yet-unpatched critical vulnerability affecting up-to-date versions of Adobe Reader and Acrobat has just become more dangerous. A security consultant has demonstrated how to exploit the bug without needing to actually open a malformed PDF file. It's been a little over two weeks since members of the cyber-cri... |
6 March 2009
04:19 GMT |
|
|
Experts from vulnerability research firm Secunia warn that disabling JavaScript in Adobe Reader and Acrobat products does not efficiently protect against the recently-disclosed 0-day remote code execution vulnerability affecting them. Until Adobe will address the problem, another security researcher has created an un... |
25 February 2009
03:24 GMT |
|
|
The cybercrime-fighting outfit Shadowserver has released an advisory warning about a critical flaw in Adobe Reader and Acrobat products that is being actively exploited in the wild. The attack vector consists of maliciously-crafted PDF files and successful exploitation gives attackers control over the system. Shadow... |
20 February 2009
04:38 GMT |
|
|
Bojan Zdrnja from the Internet Storm Center (ISC) warns that he has encountered malicious PDF files, which exploit the recently announced and patched JavaScript-based buffer overflow vulnerability in Adobe Reader and Acrobat 8.1.2 and older. The attack is based on proof of concept code that was released on exploit tr... |
8 November 2008
06:12 GMT |
|
|
Adobe has announced the existence of no less than five local and remote code execution vulnerabilities in the 8.1.2 and earlier versions of Adobe Reader and Acrobat. Security patches have been released for all of them along with an advisory, which also includes a privilege escalation and a denial of service vulnerabi... |
5 November 2008
08:08 GMT |
|
|
