Fri, Feb 20 2009 11:37
Buffer overflow issue in versions 9.0 and earlier of Adobe Reader and Acrobat
A critical vulnerability has been identified in Adobe Reader 9 and
Acrobat 9 and earlier versions. This vulnerability would cause the
application to crash and could potentially allow an attacker to take
control of the affected system. There are reports that this issue is
Adobe is planning to release updates
to Adobe Reader and Acrobat to resolve the relevant security issue.
Adobe expects to make available an update for Adobe Reader 9 and
Acrobat 9 by March 11th, 2009. Updates for Adobe Reader 8 and Acrobat 8
will follow soon after, with Adobe Reader 7 and Acrobat 7 updates to
follow. In the meantime, Adobe is in contact with anti-virus vendors,
including McAfee and Symantec, on this issue in order to ensure the
security of our mutual customers. A security bulletin will be published
on http://www.adobe.com/support/security as soon as product updates are available.
Filed under: Advisories / Bulletins