December 15, 2011

Out-of-band fix for Adobe Reader security issue coming Friday

Adobe on Friday plans to issue an emergency patch to fix a critically rated, zero-day vulnerability in its Adobe Reader and Acrobat software that is being exploited in limited and targeted attacks. Friday's update will be available for Reader and Acrobat 9 for Windows. Because the bug is mitigated by Protected View functionality, the company plans to wait until its next quarterly security update on Jan. 10 to patch Reader and Acrobat X, its most current version. Attackers have already attempted to leverage the memory corruption flaw to infiltrate Lockheed Martin, among other companies. The defense contractor, which reported the bug to Adobe, said it did not experience a breach as a result of the attempted intrusion. 
Related Articles
Related Topics

Sign up to our newsletters

More in News

House Intelligence Committee OKs amended version of controversial CISPA

Despite the 18-to-2 vote in favor of the bill proposal, privacy advocates likely will not be satisfied, considering two key amendments reportedly were shot down.

Judge rules hospital can ask ISP for help in ID'ing alleged hackers

The case stems from two incidents where at least one individual is accused of accessing the hospital's network to spread "defamatory" messages to employees.

Three LulzSec members plead guilty in London

Ryan Ackroyd, 26; Jake Davis, 20; and Mustafa al-Bassam, 18, who was not named until now because of his age, all admitted their involvement in the hacktivist gang's attack spree.