Adobe Acrobat 8 full of holes

Upgrade to 9 or patch to fill the gaps

By Stewart Meagher

Wed Nov 05 2008, 10:48

USERS OF version 8 of Adobe's ubiquitous PDF reader software should patch immediately to version 8.1.3 or upgrade to version 9 to prevent problems caused by serious flaws in the software.

Version 8.1.2 suffers from a stack buffer overflow when parsing some invalid PDF files. The vulnerability is caused by a boundary error when parsing format strings containing a floating point specifier in a certain JavaScript function.

The vulnerability requires that users open a maliciously crafted PDF file thereby allowing attackers to gain access to vulnerable systems and assume the privileges of a user running Acrobat Reader.

Adobe Reader version 9, which was released in June 2008, is not vulnerable to the problem. µ

L'Inq
Adobe Updater

Adobe reveals an Acrobat and Reader vulnerability affecting Windows, Mac OS X and Linux Only Android escapes Wednesday, 7 December 2011, 15:19 PM Read more	Adobe patches critical vulnerabilities in Flash Player Attacks are already seen in the wild Thursday, 22 September 2011, 10:06 AM Read more
Microsoft and Adobe release security updates Remote code execution flaws patched Wednesday, 14 September 2011, 13:32 PM Read more	Mega patch day passes for Microsoft and Adobe Acrobat sandboxed, but Flash needs another fix Wednesday, 15 June 2011, 11:52 AM Read more
Adobe Flash Player is hit by zero-day attacks again A recurring case of deja vu Tuesday, 12 April 2011, 11:18 AM Read more	Android smartphones vulnerable to Flash Player attacks Mobile phones and desktop PCs are under threat Tuesday, 15 March 2011, 11:27 AM Read more

< Previous article| Next article >

Comments

Play Me the Upgrade Blues

Why not ditch this piece of S-oftware and replace it with GhostScript(+GhostView) at no charge. At least the GS option can also display Adobe PostScript, which Adobe Acrobat cannot. And as a beneficial side-effect, GS eliminates all the security problems which come with the Adobe Macromedia Flash component in Adobe Acrobat 9.

http://www.ghostscript.com/

posted by : Ghost, 05 November 2008 Complain about this comment

dump bloated buggy adobe...

you can get better at..
http://www.docu-track.com/home/prod_user/PDF-XChange_Tools/

posted by : jon, 05 November 2008 Complain about this comment

Foxit

Just get Foxit and be happy. Acrobat and it's free reader-part have become obnoctious bloatware. TIme for this shit to die already.

posted by : PaeDoFile, 05 November 2008 Complain about this comment

INQ White papers

Databases

Network management

Security

Service oriented architecture

Storage

INQ Jobs

Support / Patching

A major client of mine is c...

INQ Poll

Authorities in several countries raided Megaupload recently, shut down all of its services, seized hundreds of servers and arrested several of its executives on criminal charges.

Do you think the move was justified?

Yes, companies should suffer an immediate death penalty upon being accused of copyright infringement.

Yes, the coppers said the company was breaking the law so it must be guilty.

No, the company and the people accused are innocent until proven guilty.

No, the company had millions of customers who have been harmed by having access to their data files cut off.

I don't care, I never used Megaupload anyway.

View other polls

© Incisive Media Investments Limited 2012, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093

SEARCH :

Site Credentials:

Business & Technology websites:

Business research resources:

Products:

Investment Market IT websites:

Find out what you are worth:

Salary Calculator

Search for a job:

Recruitment Agency A-Z Directory

Accreditations:

Digital Publisher of the Year 2010

Adobe Acrobat 8 full of holes

Share this:

RIM Playbook OS 2.0 and Blackberry 7.1 video demo

Nokia Lumia 710 video review