Adobe Reader, Acrobat patches coming Tuesday

By

Pushed forward due to active exploits.

Adobe plans to release updates to its widely deployed Reader and Acrobat software to address a number of flaws, including a pair of known issues.

The company announced that updates to Reader 9.3.4 for Windows, Macintosh and UNIX and Acrobat 9.3.4 for Windows and Mac will close an undisclosed number of "critical" vulnerabilities. Reader and Acrobat 8.2.4 also will receive an upgrade.

The updates were due to be released October 12, but moved up a week due to active exploits targeting a vulnerability confirmed by Adobe earlier this month.

That unpatched flaw, which garnered vulnerability tracking firm Secunia's most severe rating, could be targeted to crash a user's machine or take complete control of it, according to a previous advisory from Adobe.

Five days after that disclosure, Adobe revealed another unpatched bug affecting Reader and Acrobat. However, unlike the other zero-day, Adobe said it is not aware of any in-the-wild attacks targeting the vulnerability. The same hole also impacted Flash but was plugged in that software a week later.

As PDFs have become one of the most heavily targeted file types by cybercriminals, users are advised to treat all unsolicited PDF files with "extreme caution" and avoid visiting untrusted websites where their machines may be infected with exploits, according to security firm F-Secure.

See original article on scmagazineus.com

Adobe Reader, Acrobat patches coming Tuesday
Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:

Most Read Articles

Travel eSIMs secretly route traffic over Chinese and undisclosed networks: study

Travel eSIMs secretly route traffic over Chinese and undisclosed networks: study

"Widespread data theft" hits Salesforce customers via third party

"Widespread data theft" hits Salesforce customers via third party

Attackers weaponise Linux file names as malware vectors

Attackers weaponise Linux file names as malware vectors

Home Affairs adds SecOps to new cyber risk overhaul

Home Affairs adds SecOps to new cyber risk overhaul

Log In

  |  Forgot your password?