News

Adobe issues fix for Acrobat, Reader to block ongoing Flash attacks

SearchSecurity.com Staff

Adobe Systems Inc. issued an update for users of its Reader and Acrobat products, fixing a serious Flash Player zero-day vulnerability that has been an active target of attackers.

Adobe issued a security update

    Requires Free Membership to View

Thursday, repairing critical flaws that affect current versions of Adobe Reader and Acrobat for Windows.

Attacks targeting the vulnerability have used specially crafted Flash files embedded in a Microsoft Word document or Excel spreadsheet and delivered them as an attachment. The flaw enables an attacker to execute malicious code and gain control of a victim’s machine.

Adobe addressed the vulnerability in its Flash Player earlier this month. The company is advising users of Mac OS X and Windows to use update utilities to acquire the patch.

Adobe said it would issue a fix for Adobe Reader X for Windows during its regularly scheduled update on June 14.  Adobe said the flaw is not as serious for Reader X, because running that version of the product in Protected Mode prevents the exploit from executing.

Current Adobe Reader products for UNIX, Adobe reader for Android, and Adobe Reader and Acrobat 8 remain unaffected by this vulnerability.

~Ryan Cloutier


There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: