Saturday July 4, 2009 11:05 AM AEST

SC Magazine Australia/NZ > News > Patch Management > Other > Adobe issues critical fix

Vulnerability Alerts

SANS

Microsoft

MS09-022 - Critical: Vulnerabilities in Windows Print Spooler Could Allow Remote Code Execution (961501) - Version:1.1
MS09-021 - Critical: Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (969462) - Version:1.1

CERT/CC

Latest Comments

"Agree that wireless hotspots are an easy way for hackers to gather information from connected ..."

on New devices make hotspots a hacker's paradise

by Patrick Hooper | Jul 3, 2009 4:06 AM

"Katarzyna what has this got to do with Symantec?? "

on Mobile phone directory service faces consumer uproar

by PaulC | Jul 2, 2009 12:55 PM

"Hi Nadim, I'm the chief marketing officer at Ounce Labs, and I disagree with your statement. ..."

on Ounce Labs 5.0

by Jennifer Sullivan | Jun 30, 2009 11:56 PM

"noobs!"

on Australia shows poor resistance to phishing

by webappsec | Jun 30, 2009 4:53 PM

"Jude makes a good point: by increasing the amount of false information provided to phishers, it ..."

on Commonwealth Bank phishing scam alert

by webappsec | Jun 30, 2009 4:43 PM

Other

Adobe issues critical fix

By Shaun Nichols
Jun 25, 2008 9:35 AM
Tags: Adobe | patch | critical | fix

Adobe has issued fixes for a critical vulnerability being exploited by malware writers.

The flaw affects both Adobe's Acrobat and Adobe Reader applications on MacOS and Windows. The company recommends that users of both platforms install the security update.

The vulnerability could allow an attacker to gain control of the user's system by way of malformed JavaScript code. When exploited, the vulnerability leads to an application crash which leaves the user liable to remote control of their system and code execution from the attacker.

Such remote code execution flaws are a favorite method for covertly installing malware and are often regarded as the highest risks amongst software vulnerabilities.

Adobe has classified the flaw as 'critical,' the highest of its four security alert levels. The company noted that there is a heightened risk, as the flaw is currently being leveraged by attackers to spread malware in the wild.

Sans security researcher Jason Lam echoed Adobe's sense of urgency, recommending that users install the update as soon as possible.

"This is likely to appear in a malware spreading website near you soon given the track record of the botnet operators," he wrote.

Ads by Google

Thoughts on this article? Add a comment below.

Be the first to comment on this article.

Report this comment as offensive:

* Indicates information we require to process your submission.

Name: *
Email: *
Reason for offense: *
Your report will not be displayed.

Name:

Email:

(will not be displayed)

Comment:

(HTML not permitted)

Validation

Enter the code you see below:

Exclusive Data Centre - Sponsored Content by Microsoft

Most Read
Most Discussed
Latest News

Patch Management Whitepapers

Adobe issues critical fix

SC MAGAZINE SITEMAP

CATEGORIES

News

Alerts

Products

Stats

Blogs

Photo Galleries

Whitepapers

Events

Jobs

Downloads

Vulnerabilities & Exploits

Breaches & Exposures

Messaging

Mobile

Access Control

Biometrics & Forensics

Legal

Risk Management

Job Centre

Patch Management