Adobe Patches Reader Vulnerability

by Rafael Hernandez on March 15, 2009 · 0 comments

Adobe’s Reader PDF software has had quite a serious flaw in it for the past few weeks which, if exploited, can cause quite a bit of mayhem should the nefarious types wish it so. According to company blogger David Lenoe their software has been updated in order to rid it of the vulnerability. Here’s the jist:

Today, we posted the Adobe Reader 9.1 and Acrobat 9.1 update, which resolves the recent JBIG2 security issue (CVE-2009-0658), including the ‘no-click’ variant of the vulnerability. We encourage all Adobe Reader users to download and install the free Adobe Reader 9.1. The Adobe Reader 9.1 update is available here. Acrobat 9 users should refer to the Security Bulletin for download details. We expect updates for Adobe Reader 7 and 8, and Acrobat 7 and 8, to be available by March 18. In addition, Adobe plans to make available Adobe Reader 9.1 for Unix by March 25. In the meantime, for Adobe Reader 7 and 8 users who are unable to update to Adobe Reader 9.1, as well as Acrobat 7 and 8 users, more information on immediate protection for this issue from anti-virus and security vendors is available in the post directly below.

If you’re a Microsoft Windows user you’ll likely want to get their updated software mighty quickly, or look for alternative PDF reading software.

Previous post:

Next post: