Version 8.1.2 suffers from a stack buffer overflow when parsing some invalid PDF files.
The vulnerability requires that users open a maliciously crafted PDF file thereby allowing attackers to gain access to vulnerable systems and assume the privileges of a user running Acrobat Reader.
Adobe Reader version 9, which was released in June 2008, is not vulnerable to the problem.
Adobe Acrobat 8 full of holes
By Stewart Meagher on Nov 6, 2008 6:23AM
Users of version 8 of Adobe's ubiquitous PDF reader software should patch immediately to version 8.1.3 or upgrade to version 9 to prevent problems caused by serious flaws in the software.
Got a news tip for our journalists? Share it with us anonymously here.