Menu
Adobe releases previously delayed security updates for Reader and Acrobat

Adobe releases previously delayed security updates for Reader and Acrobat

The updates fix eight vulnerabilities, including some that could be exploited to infect computers with malware

After a one-week delay, Adobe Systems has released security updates for its Reader and Acrobat products to patch critical vulnerabilities that could lead to computers being compromised.

The new 10.1.12 and 11.0.09 versions of Adobe Reader and Acrobat released Tuesday for Windows and Mac address eight vulnerabilities, five of which could allow for remote code execution.

One of the other three vulnerabilities can be used to bypass the products' sandbox protection to run code with elevated privileges on Windows, one can lead to a denial-of-service condition and one is a universal cross-site scripting (UXSS) flaw that only affects the programs on the Mac platform.

These security updates were originally planned for Tuesday, Sept. 9, to coincide with Microsoft's monthly patch release, but Adobe postponed them due to issues identified during testing.

Users are advised to update their installations as soon as possible, as Adobe Reader is widely used and has been targeted by attackers in the past.

"Though these are all high priority issues, the disclosure list suggests that they are not active in the wild, but given the nature of the disclosure, exploit or proof-of-concept code will likely become available in the near future," said Ross Barrett, senior manager of security engineering at Rapid7, via email.


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags securitypatch managementpatchesAdobe SystemsExploits / vulnerabilitiesDesktop security

Featured

Slideshows

Reseller News launches new-look Awards at 2018 Judges’ Lunch

Reseller News launches new-look Awards at 2018 Judges’ Lunch

Introducing the Reseller News Innovation Awards, launched to the channel at the 2018 Judges’ Lunch in Auckland. With more than 70 judges now part of the voting panel, the new-look awards will reflect the changing dynamics of the channel, recognising excellence across customer value and innovation - spanning start-ups, partners, distributors and vendors.

Reseller News launches new-look Awards at 2018 Judges’ Lunch
Kiwi channel debates GDPR as Reseller News Exchange hits Wellington

Kiwi channel debates GDPR as Reseller News Exchange hits Wellington

This exclusive Reseller News Exchange, in association with Arrow ECS ANZ, ForeScout and StorageCraft, went on the road to debate the early implications of GDPR in New Zealand, extracting opportunities while evaluating challenges for the channel in the year ahead.

Kiwi channel debates GDPR as Reseller News Exchange hits Wellington
Show Comments