Follow us on Twitter
Follow us on Twitter
Follow us on Twitter
Follow us on Twitter
Follow us on Twitter

Products' We Represent


Subscribe

captcha 
Adobe to release critical flaw patches to Reader and Acrobat
Wednesday, 01 August 2012 01:56

In Prenotification Security Advisory for Adobe Reader and Acrobat - APSB12-16 released by Adobe, it has confirmed that it will release security updates for the Adobe Reader and Acrobat X 10.1.3 and previous versions, for Windows and Macintosh on August 14, 2012. Citing flaws of a critical nature, Adobe has said in the post that the updates would address these flaws. Adobe has listed out the affected software versions: 

  • Adobe Reader X (10.1.3) and earlier 10.x versions for Windows and Macintosh
  • Adobe Reader 9.5.1 and earlier 9.x versions for Windows and Macintosh
  • Adobe Acrobat X (10.1.3) and earlier 10.x versions for Windows and Macintosh
  • Adobe Acrobat 9.5.1 and earlier 9.x versions for Windows and Macintosh

Importantly, the post also includes Adobe's priority ratings for each of the affected software. Priority Ratings is a guideline to help its customers in managed environments to prioritize Adobe security updates. The company decides the priority rankings based on historical attack patterns for the relevant product, the type of vulnerability, the platform(s) affected, and any potential mitigations that may be in place.  

The list gives four of the six items a priority rating of 2. Updates to software with this priority rating fix the vulnerabilities in a product that which has historically been at elevated risk. Adobe adds that there currently are no known exploits to these programmes. Going by previous experience, Adobe do not anticipate exploits are imminent. However, as a best practice, they recommend that administrators install the update soon, that is, within 30 days. The remaining two programmes have a priority rating of 1. This rating indicates that the software contains vulnerabilities that are being targeted, or those that are at a higher risk of being targeted by exploit(s) in the wild for a given product version and platform. The company recommends that administrators install these update too as soon as possible, preferably within 72 hours.

Recently, Adobe released security updates for Adobe Flash Player (11.2.202.233 and earlier versions) for Windows, Macintosh and Linux; Adobe Flash Player (11.1.115.7 and earlier versions) for Android 4.x, 3.x and 2.x. These updates address an object confusion vulnerability (CVE-2012-0779) that could cause the application to crash and potentially allow an attacker to take control of the affected system. Reports state that the vulnerability has being exploited in the wild in active targeted attacks designed to trick the user into clicking on a malicious file delivered by an e-mail message. The exploit targets Flash Player on Internet Explorer for Windows only.

Apple approved an Adobe Reader app for iOS last year. Adobe had ported over the software experience of its Reader programme via an app for iPhone, iPod Touch and iPad users, allowing iOS users to view, access, interact with, share, and print PDF files wirelessly (with AirPrint) from their iPhones, iPod Touch and iPads.

 

ACE Featured Products

P910L Studio Photo Printer
P910L Studio Photo Printer
Call for Pricing
ZXP Series 3
ZXP Series 3
$1,999
Disk Station DS116
Disk Station DS116
Call for Pricing
QNAP TS-420U
QNAP TS-420U
Call for Pricing
Disk Station DS416slim
Disk Station DS416slim
Call for Pricing
Disk Station DS216j
Disk Station DS216j
Call for Pricing
Intuos5 Medium Pen & Touch
Intuos5 Medium Pen & Touch
$417
Power PDF 9 Advanced
Power PDF 9 Advanced
$199

Latest News

  • Seagate designs and manufactures the most versatile and dependable high-capacity hard drives available. From
    Synology® Inc. is aware of a new processor erratum discovered in the Intel® Atom™ C2000 family. After in-depth investigation, the possibility of seeing accelerated degradation of a...
  • Synology® Inc. today announced that Vic Hsu, Vice President of the System and Enterprise Group, will extend his responsibilities to assume the role of Chief Executive Officer, effe...
  • Protect your business, home, and other environments with a reliable and intuitive surveillance system.Surveillance Station delivers intelligent monitoring and video management tool...
  • Synology® Inc. today announced the official release of Surveillance Station 8.0, delivering a new and efficient desktop client, smart multiple streaming technology, and painless ...