Biting the hand that feeds IT
Biting the hand that feeds IT
Security:
|
|
News ToolsReg Shops |
![[Print]](/Design/graphics/icons/pf.png "Printer-friendly version"){kind=icon} ![[Mobile]](/Design/graphics/icons/regmob.png "Read The Reg on your mobile phone"){kind=icon} ![[Alerts]](/Design/graphics/icons/alerts.png "Reg Desktop News Alerts"){kind=icon}
Adobe update quells Unix PDF perilAcrobat stability restoredPublished Wednesday 6th July 2005 10:26 GMT In brief Adobe has issued patches for a common vulnerability in various Unix versions of its Acrobat Reader software to guard against possible hacker attack. The vulnerability stems from a boundary error in "UnixAppOpenFilePerform()" function when Acrobat Reader is opening a document containing a "/Filespec" tag. This stack buffer overflow security bug creates a means for hackers to construct a maliciously constructed PDF file which, if opened by users, could be used to inject hostile code onto vulnerable systems. This arbitrary code would execute with the privileges of the user running vulnerable versions of Acrobat Reader for Unix (versions 5.0.9 and 5.0.10). Adobe users on Linux and Solaris Platforms are advised to upgrade to Adobe Reader 7.0. IBM-AIX and HP-UX users need to step up to Adobe Acrobat Reader 5.0.11. Adobe has published an advisory explaining the issue. There's more info in a bulletin from security firm iDEFENSE, which discovered the security bug, here. ® Related storiesAdobe patches Acrobat, Reader flaws
Track this type of story as a custom Atom/RSS feed or by email.
|
|
Top 20 stories • All The Week’s Headlines • Archive • Search
Post to Slashdot
Digg this
Add to del.icio.us
Reddit
Previous Article
