Skip to main content

Adobe Acrobat and Reader Multiple Vulnerabilities

Last Update Date: 28 Jan 2011 Release Date: 6 Oct 2010 5636 Views

RISK: Medium Risk

Multiple vulnerabilities have been identified in Adobe Reader and Acrobat, which could be exploited by remote attackers to cause a denial of service or compromise a vulnerable system, or by local attackers to gain elevated privileges. These issues are caused by memory corruptions, array-indexing, and input validation errors when processing malformed data, fonts or images within a PDF document, which could be exploited by remote attackers to crash an affected application or execute arbitrary code by tricking a user into opening a specially crafted PDF document, or exploited by malicious users to elevate privileges on Linux systems.


Impact

  • Denial of Service
  • Elevation of Privilege
  • Remote Code Execution

System / Technologies affected

  • Adobe Reader version 9.3.4 and prior
  • Adobe Reader version 8.2.4 and prior
  • Adobe Acrobat version 9.3.4 and prior
  • Adobe Acrobat version 8.2.4 and prior

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.


Vulnerability Identifier


Source