The vulnerability joins at least six others that have surfaced in recent days.
Most severe among them are five holes in browser plug-ins that could allow attackers to manipulate a website for cross-site scripting attacks.
A sixth flaw related to PDF document catalogue handling was reported Saturday as part of the Month of Apple Bugs project.
As a fix, users are urged to upgrade to versions 7.0.9 or 8.0, which was released in early December but does not contain any of the reported vulnerabilities, according to an Adobe bulletin.
Experts said PDFs have long been considered a safe way to send and retrieve documents, but that mindset may be changing.
"In using PDFs, some wish to sidestep the risks of malware-prone Microsoft Office documents," researcher Karthik Raman of McAfee Avert Labs said in a company blog post Tuesday. "But…we should all now be more careful with PDFs."
A spokesman for the USbased Adobe Systems told SCMagazine.com today that the company was not aware of any active exploits affecting customers.
Click here to email reporter Dan Kaplan.
_(5).jpg&h=140&w=231&c=1&s=0)
.png&h=140&w=231&c=1&s=0)
.png&w=100&c=1&s=0)
iTnews Benchmark Security Awards 2025
Digital Leadership Day Federal
Government Cyber Security Showcase Federal
Government Innovation Showcase Federal
Digital NSW 2025 Showcase
_(1).jpg&h=140&w=231&c=1&s=0)
