The Channel logo


By | John Leyden 7th December 2006 11:46

Adobe puts Acrobat flaw on the critical list

PDF peril

Adobe users are being urged to upgrade their software after the firm reassessed the impact of a recently discovered vulnerability in Adobe Reader and Adobe Acrobat 7.

The flaw, first discovered last month, was initially thought capable only of crashing Adobe's software. Subsequent investigation revealed the flaw also creates a potential means for hackers to run hostile code in cases where Windows users running the affected software and IE (though not other browsers) visit maliciously constructed websites.

Although not the subject of active exploitation by hackers, the flaw is serious enough for Adobe to advise users to either upgrade to Adobe Reader 8 or replace a buggy library file (AcroPDF.dll) that's the source of the problem, as explained here.

In related news, Adobe also advised users to update its Download Manager software following the discovery of a buffer overflow flaw. The bug, if left untreated, allows hackers to compromise vulnerable systems providing they can trick potential marks into visiting maliciously constructed websites. More details on the bug can be found in Adobe's advisory here. ®

alert Send corrections


Frank Jennings

What do you do? Use manual typwriters or live in a Scottish croft? Our man advises
A rusty petrol pump at an abandoned gas station. Pic by Silvia B. Jakiello via shutterstock

Trevor Pott

Among other things, Active Directory needs an overhaul
Baby looks taken aback/shocked/affronted. Photo by Shutterstock

Kat Hall

Plans for 2 million FTTP connections in next four years 'not enough'
Microsoft CEO Satya Nadella


League of gentlemen poster - Tubbs and Edward at the local shop. Copyright BBC
One reselling man tells his tale of woe