Adobe has released an advisory about a critical vulnerability in Adobe Reader & Adobe Acrobat products. This vulnerability (CVE-2011-2462) could cause a crash and potentially allow an attacker to take control of the affected system.
Affected versions:
- Adobe Reader X (10.1.1) and earlier versions
- Adobe Reader 9.4.6 and earlier 9.x versions
- Adobe Acrobat X (10.1.1) and earlier versions
Fix availability:
"We are in the process of finalizing a fix for the issue and expect to make available an update for Adobe Reader and Acrobat 9.x for Windows no later than the week of December 12, 2011. Because Adobe Reader X Protected Mode and Adobe Acrobat X Protected View would prevent an exploit of this kind from executing, we are currently planning to address this issue in Adobe Reader X and Acrobat X for Windows with the next quarterly security update for Adobe Reader and Acrobat, currently scheduled for January 10, 2012."
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment