Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: Adobe Reader/Acrobat Multiple Vulnerabilities

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Vulnerabilities

See the original Secunia advisory:
Adobe Reader/Acrobat Multiple Vulnerabilities

Secunia Adobe Reader/Acrobat Multiple Vulnerabilities
Secunia Official 29th Dec, 2011 21:14
Ranking: 0
Posts: 0
User Since: -
System Score: -
Location: Copenhagen, DK
Multiple vulnerabilities have been reported in Adobe Reader and Adobe Acrobat, which can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.

1) An error in the U3D data handling can be exploited to corrupt memory.

NOTE: This vulnerability is currently being actively exploited in targeted attacks against Adobe Reader 9.x on Windows.

2) An unspecified error in the PRC component can be exploited to corrupt memory.

NOTE: This vulnerability is currently being actively exploited in targeted attacks against Adobe Reader 9.x on Windows.

3) The application bundles a vulnerable version of Adobe Flash Player.

For more information:
SA46818

The vulnerabilities are reported in the following products:
* Adobe Reader X versions 10.1.1 and prior for Windows and Macintosh.
* Adobe Reader versions 9.4.6 and prior for Windows, Macintosh, and UNIX.
* Adobe Acrobat X versions 10.1.1 and prior for Windows and Macintosh.
* Adobe Acrobat versions 9.4.6 and prior for Windows and Macintosh.

sbeckstrand RE: Adobe Reader/Acrobat Multiple Vulnerabilities
Member 29th Dec, 2011 21:14
Score: 1
Posts: 7
User Since: 7th Nov 2011
System Score: N/A
Location: US
Last edited on 29th Dec, 2011 21:14
Upgraded to 9.4.7.8 however Secunia still reports the problem and the solution is the same update as already applied. 9.4.7.8 is the latest update from Adobe and repeated installations do nothing to help the problem.
Was this reply relevant?
+0
-0
mogs RE: Adobe Reader/Acrobat Multiple Vulnerabilities
Expert Contributor 29th Dec, 2011 22:28
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
@sbeckstrand

Hello.
This section of the forum (Vulnerabilities ) is reserved for official discussion....you should create your own thread in one of the other sections.....Open Discussion for example.
Please include a Troubleshoot Report as per :-
http://secunia.com/vulnerability_scanning/personal...

There is already a recent thread running on the topic which you can veiw also : see :-
http://secunia.com/community/forum/thread/show/118...
tho' the issue seems unresolved.

--
Was this reply relevant?
+1
-0
djaskie RE: Adobe Reader/Acrobat Multiple Vulnerabilities
Member 29th Feb, 2012 16:54
Score: 0
Posts: 1
User Since: 29th Feb 2012
System Score: N/A
Location: US
Last edited on 29th Feb, 2012 16:54
This patch can cause issues for users with the new default printer setup:
http://kb2.adobe.com/cps/928/cpsid_92870.html#main...
Was this reply relevant?
+0
-0


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability - Disclaimer