Newsletter:

Skip Navigation LinksHome > News > Security > ActiveX flaw leaves Adobe apps vulnerable

Site Map |

ActiveX flaw leaves Adobe apps vulnerable

By Shaun Nichols
1 December 2006 03:42PM
Tags: activex | flaw | leaves | adobe | apps | vulnerable

'Critical' flaw affects Acrobat and Reader.

Adobe is warning users of a newly-discovered security flaw that could give attackers control over compromised systems.

According to Adobe, the vulnerability affects the ActiveX components for versions 7.0.0 through 7.0.8 of both its Reader and Acrobat applications.

The vulnerability can be exploited when a user views a specially-crafted web page with Internet Explorer. Once the exploit has been executed, an attacker would have the ability to remotely install and execute malware.

The vulnerability was originally reported by French security research firm FrSIRT. Both FrSIRT and Adobe rate the vulnerability as "critical" – the highest alert level for both organisations.

According to Adobe, the threat can be neutralised by deleting the AcroPDF.dll ActiveX file. This will disable the ability to view PDF files within Internet Explorer, however. Other browsers and non-Windows operating systems are not affected by the vulnerability.

Copyright © 2008 vnunet.com

   


Ads by Google


Thoughts on this article? Add a comment below.
Be the first to comment on this article.

Report this comment as offensive:

   * Indicates information we require to process your submission.

Name: *
Email: *
Reason for offense: *
Your report will not be displayed.  
Name:
*
 
Email:
(will not be displayed)
*
 
Comment:
(HTML not permitted)
*
 
Validation
*

Enter the code you see below:

 

 
 
 
 
 


 
Tripwire - Click here to win an iTouch

Tags

adobe apps attackers critical first flash flaw google hits iphone microsoft patches pdf safari security software vulnerable warns web windows


Product Reviews

Lieberman Software Enterprise Random PM
Star Rating
The Lieberman Software Enterprise Random Pass­word Manager is a full-on password manager and randomiser for...
Proginet Corporation SecurForce
Star Rating
Proginet SecurForce is a little bit of a horse of a different color for this month's Group Test.
Siber Systems RoboForm Enterprise
Star Rating
On the surface, RoboForm Enterprise starts out looking like a single sign-on product, but that is just on the...
Symark International PowerBroker
Star Rating
The Symark PowerBroker is a policy-driven, privileged access control application.
Symark International PowerKeeper
Star Rating
The Symark PowerKeeper is a hardened appliance. It comes with a sealed operating system that provides a...
iTnews 2009 Job Survey

TopTopics
(71547) -  top
(3663) -  microsoft
(3172) -  acma
(2728) -  company
(2489) -  telstra
(2093) -  terria
(2012) -  data
(1993) -  content
(1878) -  broadband
(1829) -  isp
(1826) -  internode
(1435) -  voip
(1427) -  filtering
(1419) -  linux
(1396) -  centre