Version 8.1.2 suffers from a stack buffer overflow when parsing some invalid PDF files.
The vulnerability is caused by a boundary error when parsing format strings containing a floating point specifier in a certain JavaScript function.
The vulnerability requires that users open a maliciously crafted PDF file thereby allowing attackers to gain access to vulnerable systems and assume the privileges of a user running Acrobat Reader.
Adobe Reader version 9, which was released in June 2008, is not vulnerable to the problem.
Adobe Acrobat 8 full of holes
By
Stewart Meagher
on Nov 6, 2008 6:23AM
Users of version 8 of Adobe's ubiquitous PDF reader software should patch immediately to version 8.1.3 or upgrade to version 9 to prevent problems caused by serious flaws in the software.
Got a news tip for our journalists? Share it with us anonymously here.
Partner Content
Promoted Content
New report reveals opportunities to address weak security in APAC organisations
Partner Content
AI and automation will help drive accelerating digital transformation
Partner Content
Solving the post-COVID digital access control headache
Partner Content
Why encryption is the key to digital fitness, according to Thales
Sponsored Whitepapers
Future of work: Support your distributed HR workforce with digital document processes
Develop a resiliency strategy that integrates risk analysis & continuity management
.jpg&w=100&c=1&s=0)
IBM Maximo: Manage any asset, anytime, any place with mobile EAM
.jpg&w=100&c=1&s=0)
Optimise your operations with APM and AI-Powered insights
Forrester Study: Understand the total economic impact of using IBM Cloud Pak™ for Data
