December 06, 2011

Adobe to issue emergency fix for Reader security bug

Adobe on Tuesday warned of a critically rated, unpatched vulnerability in its Adobe Reader and Acrobat software.

Attackers who exploit the memory corruption flaw may be able to take control of a target system, according to an advisory.There are reports of live targeted, but limited, attacks underway.

Adobe expects to fix the issue sometime next week in Reader and Acrobat version 9. However, because the bug is mitigated by Protected View functionality, the company plans to wait until Jan. 10 to patch Reader and Acrobat X, its most current version. Jan. 10 is the scheduled date of Adobe's next quarterly security update.

The advisory details how users of the latest version can enable Protected View.

Reader for Android and Flash Player are not impacted by the vulnerability.

Related Articles
Related Topics

More in News

Operators again revive Pushdo botnet, use a popular tactic to stay hidden ...

Botnet operators are using a domain-generation algorithm to conceal their command-and-control center. And once they knew security researchers were on to their tricks, they got even slicker.

Mac spyware discovered on Angolan dissident's computer at Oslo Freedom Forum

Mac spyware discovered on Angolan dissident's computer at ...

Security researchers are studying an apparent new strain of Mac malware that turned up on the computer of a participant at the just-concluded Oslo Freedom Forum, an annual human rights ...

Judge in London sentences LulzSec members

Judge in London sentences LulzSec members

The sentences range from 20 to 32 months, with none of the defendants likely to serve the full time. There has been no formal request to extradite the U.K. men ...