There has been detected critical vulnerabilities in Adobe Reader and Acrobat PDF products. One of the vulnerabilities (CVE-2010-0186) could subvert the domain sandbox and make unauthorized cross-domain requests. The second patched vulnerability (CVE-2010-0188) could cause the application to crash and could potentially allow an attacker to take control of the affected system.
Vulnerable are Adobe Reader 9.3 and earlier versions & Adobe Acrobat 9.3 and earlier versions. Users of Adobe Reader are recommended to update their versions to 9.3.1. For those Adobe Reader users who can't update to this version Adobe has provided Adobe Reader 8.2.1 update. Fresh versions are available here.
More information can be read from Adobe's security bulletin.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment