Menu
Adobe releases previously delayed security updates for Reader and Acrobat

Adobe releases previously delayed security updates for Reader and Acrobat

The updates fix eight vulnerabilities, including some that could be exploited to infect computers with malware

After a one-week delay, Adobe Systems has released security updates for its Reader and Acrobat products to patch critical vulnerabilities that could lead to computers being compromised.

The new 10.1.12 and 11.0.09 versions of Adobe Reader and Acrobat released Tuesday for Windows and Mac address eight vulnerabilities, five of which could allow for remote code execution.

One of the other three vulnerabilities can be used to bypass the products' sandbox protection to run code with elevated privileges on Windows, one can lead to a denial-of-service condition and one is a universal cross-site scripting (UXSS) flaw that only affects the programs on the Mac platform.

These security updates were originally planned for Tuesday, Sept. 9, to coincide with Microsoft's monthly patch release, but Adobe postponed them due to issues identified during testing.

Users are advised to update their installations as soon as possible, as Adobe Reader is widely used and has been targeted by attackers in the past.

"Though these are all high priority issues, the disclosure list suggests that they are not active in the wild, but given the nature of the disclosure, exploit or proof-of-concept code will likely become available in the near future," said Ross Barrett, senior manager of security engineering at Rapid7, via email.


Follow Us

Join the New Zealand Reseller News newsletter!

Error: Please check your email address.

Tags patchessecurityAdobe SystemsDesktop securitypatch managementExploits / vulnerabilities

Featured

Slideshows

Sizing up the NZ security spectrum - Where's the channel sweet spot?

Sizing up the NZ security spectrum - Where's the channel sweet spot?

From new extortion schemes, outside threats and rising cyber attacks, the art of securing the enterprise has seldom been so complex or challenging. With distance no longer a viable defence, Kiwi businesses are fighting to stay ahead of the security curve. In total, 28 per cent of local businesses faced a cyber attack last year, with the number in New Zealand set to rise in 2017. Yet amidst the sensationalism, media headlines and ongoing high profile breaches, confusion floods the channel, as partners seek strategic methods to combat rising sophistication from attackers. In sizing up the security spectrum, this Reseller News roundtable - in association with F5 Networks, Kaspersky Lab, Tech Data, Sophos and SonicWall - assessed where the channel sweet spot is within the New Zealand channel. Photos by Maria Stefina.

Sizing up the NZ security spectrum - Where's the channel sweet spot?
Kiwi channel comes together for another round of After Hours

Kiwi channel comes together for another round of After Hours

The channel came together for another round of After Hours, with a bumper crowd of distributors, vendors and partners descending on The Jefferson in Auckland. Photos by Maria Stefina.​

Kiwi channel comes together for another round of After Hours
Show Comments