Forum Thread: Adobe Reader/Acrobat Multiple Vulnerabilities

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Vulnerabilities

See the original Secunia advisory:
Adobe Reader/Acrobat Multiple Vulnerabilities

Secunia Adobe Reader/Acrobat Multiple Vulnerabilities
Secunia Official 29th Dec, 2011 21:14
Ranking: 0
Posts: 0
User Since: -
System Score: -
Location: Copenhagen, DK
Multiple vulnerabilities have been reported in Adobe Reader and Adobe Acrobat, which can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.

1) An error in the U3D data handling can be exploited to corrupt memory.

NOTE: This vulnerability is currently being actively exploited in targeted attacks against Adobe Reader 9.x on Windows.

2) An unspecified error in the PRC component can be exploited to corrupt memory.

NOTE: This vulnerability is currently being actively exploited in targeted attacks against Adobe Reader 9.x on Windows.

3) The application bundles a vulnerable version of Adobe Flash Player.

For more information:
SA46818

The vulnerabilities are reported in the following products:
* Adobe Reader X versions 10.1.1 and prior for Windows and Macintosh.
* Adobe Reader versions 9.4.6 and prior for Windows, Macintosh, and UNIX.
* Adobe Acrobat X versions 10.1.1 and prior for Windows and Macintosh.
* Adobe Acrobat versions 9.4.6 and prior for Windows and Macintosh.

sbeckstrand RE: Adobe Reader/Acrobat Multiple Vulnerabilities
Member 29th Dec, 2011 21:14
Score: 1
Posts: 7
User Since: 7th Nov 2011
System Score: N/A
Location: US
Last edited on 29th Dec, 2011 21:14
Upgraded to 9.4.7.8 however Secunia still reports the problem and the solution is the same update as already applied. 9.4.7.8 is the latest update from Adobe and repeated installations do nothing to help the problem.
Was this reply relevant?
+0
-0
mogs RE: Adobe Reader/Acrobat Multiple Vulnerabilities
Expert Contributor 29th Dec, 2011 22:28
Score: 2265
Posts: 6,269
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
@sbeckstrand

Hello.
This section of the forum (Vulnerabilities ) is reserved for official discussion....you should create your own thread in one of the other sections.....Open Discussion for example.
Please include a Troubleshoot Report as per :-
http://secunia.com/vulnerability_scanning/personal...

There is already a recent thread running on the topic which you can veiw also : see :-
http://secunia.com/community/forum/thread/show/118...
tho' the issue seems unresolved.

--
Was this reply relevant?
+1
-0
djaskie RE: Adobe Reader/Acrobat Multiple Vulnerabilities
Member 29th Feb, 2012 16:54
Score: 0
Posts: 1
User Since: 29th Feb 2012
System Score: N/A
Location: US
Last edited on 29th Feb, 2012 16:54
This patch can cause issues for users with the new default printer setup:
http://kb2.adobe.com/cps/928/cpsid_92870.html#main...
Was this reply relevant?
+0
-0