Adobe has released its second quarterly security update, which addresses 29 vulnerabilities in its Reader and Acrobat products. Exploitation of the majority of these flaws could result in arbitrary code execution and one of them is already being actively targeted in Web attacks since last week.On October 8, Adobe ann... |
14 October 2009
09:32 GMT |
 |
|
Attackers are exploiting a zero-day vulnerability in the latest versions of Adobe's Reader and Acrobat products to compromise computers. The company recommends disabling JavaScript as a temporary solution until a patch is shipped on October 13.The vulnerability, identified as CVE-2009-3459, can be used to remote... |
9 October 2009
04:25 GMT |
|
|
Adobe has released a scheduled update for its Reader and Acrobat products in order to fix a remotely exploitable vulnerability, which is actively being targeted in attacks. The flaw allows attackers to execute arbitrary code by embedding malformed Flash streams into PDF documents. Almost a week ago, security experts... |
1 August 2009
07:02 GMT |
|
|
Vulnerability research company Secunia has pointed out that Adobe is still serving Reader 9.1 from its official download website, despite this version being outdated and highly insecure. In its defense, Adobe explains that, at the first run after installation, the program notifies users of updates being available. S... |
23 July 2009
08:33 GMT |
|
|
Adobe has released a series of Security Updates for its Adobe Reader and Acrobat software, which fix a total of 13 critical bugs and which were made available on Tuesday. This represents the first step in what will be a quarterly update cycle for Adobe products. The updates were previously issued as the bugs were fix... |
10 June 2009
11:01 GMT |
|
|
Adobe has officially started its quarterly update cycle for its Reader and Acrobat products yesterday, by addressing thirteen flaws. This is part of the company's code-hardening efforts, which were announced a few weeks ago. The Adobe Reader and Acrobat are currently deployed in millions of computers around the... |
10 June 2009
08:10 GMT |
|
|
In light of the avalanche of critical 0-day vulnerabilities identified in its Adobe Reader and Acrobat products for the past year, Adobe wants to strengthen its security by reviewing critical areas of the older code base. A quarterly security update cycle will also be introduced starting this summer. "Since February... |
21 May 2009
08:27 GMT |
|
|
Adobe has released security updates for all versions of its Reader and Acrobat products, running on all supported operating systems, an exception being the 7.1.1 version on Mac OS X, which remains vulnerable. The patches address two serious remote code execution bugs, which have been known since the end of April. On... |
14 May 2009
08:37 GMT |
|
|
A hacker calling himself Arr1val has published proof-of-concept exploit codes for two 0-day vulnerabilities affecting Adobe Reader and Acrobat. The company has already confirmed one of them and strongly suggests disabling JavaScript in the products until a patch will be made available. The flaws are classified by Se... |
29 April 2009
05:27 GMT |
|
|
Security researchers from anti-virus vendor Symantec have detected a maliciously crafted PDF file exploiting the Adobe Reader and Acrobat getIcon() vulnerability. Users are urged to update the two affected products to their 9.1, 8.1.3 or 7.1.1 releases, depending on the version they are using. According to Symantec&... |
10 April 2009
05:51 GMT |
|
|
Several serious vulnerabilities affecting the Adobe Reader alternative, developed by Foxit Software, have been recently disclosed. Security professionals now warn that proof-of-concept (PoC) exploit code for one of the more critical ones has also been made available and could be used in future attacks. On 9 March, F... |
13 March 2009
10:06 GMT |
|
|
Foxit Software has released updates for its Foxit Reader product affecting three vulnerabilities. One of the flaws, discovered and reported by vulnerability intelligence company Secunia, has been located in the same JBIG2 decoding component that is the source for the unpatched bug in Adobe Reader currently being expl... |
10 March 2009
09:27 GMT |
|
|
The yet-unpatched critical vulnerability affecting up-to-date versions of Adobe Reader and Acrobat has just become more dangerous. A security consultant has demonstrated how to exploit the bug without needing to actually open a malformed PDF file. It's been a little over two weeks since members of the cyber-cri... |
6 March 2009
04:19 GMT |
|
|
Experts from vulnerability research firm Secunia warn that disabling JavaScript in Adobe Reader and Acrobat products does not efficiently protect against the recently-disclosed 0-day remote code execution vulnerability affecting them. Until Adobe will address the problem, another security researcher has created an un... |
25 February 2009
03:24 GMT |
|
|
The cybercrime-fighting outfit Shadowserver has released an advisory warning about a critical flaw in Adobe Reader and Acrobat products that is being actively exploited in the wild. The attack vector consists of maliciously-crafted PDF files and successful exploitation gives attackers control over the system. Shadow... |
20 February 2009
04:38 GMT |
|
|
Quickoffice, the powerful Symbian OS office suite, is reported to have just been released under the long expected 6.0 version. The application features password protection for documents, ZIP file support and word count in Quickword, as well as a range of improvements such as Excel 2007 chart viewing and a 'Go t... |
28 January 2009
03:58 GMT |
|
|
Bojan Zdrnja from the Internet Storm Center (ISC) warns that he has encountered malicious PDF files, which exploit the recently announced and patched JavaScript-based buffer overflow vulnerability in Adobe Reader and Acrobat 8.1.2 and older. The attack is based on proof of concept code that was released on exploit tr... |
8 November 2008
06:12 GMT |
|
|
Adobe has announced the existence of no less than five local and remote code execution vulnerabilities in the 8.1.2 and earlier versions of Adobe Reader and Acrobat. Security patches have been released for all of them along with an advisory, which also includes a privilege escalation and a denial of service vulnerabi... |
5 November 2008
08:08 GMT |
|
|
Adobe Systems Incorporated has just announced that Microsoft has licensed Adobe Flash Lite software, Adobe's award-winning Flash Player runtime specifically designed for mobile devices, to enable web browsing of Flash Player compatible content within the Internet Explorer Mobile browser in future versions of Mic... |
17 March 2008
10:12 GMT |
|
|
Yes! It's finally here! Version 8 of the most popular PDF reader on the planet, Adobe Reader, was released today for Linux and Solaris platforms. The new version is simply astonishing: it has a completely redesigned interface, new tools and it was created in such a way as to view PDF documents more efficiently. ... |
14 September 2007
06:19 GMT |
|
|
