Adobe Reader/Acrobat Multiple Vulnerabilities
Last Update Date:
28 Jan 2011
Release Date:
11 Feb 2008
5861
Views
RISK: Medium Risk
Multiple vulnerabilities have been identified in Adobe Reader and Acrobat, which could be exploited by attackers to bypass security restrictions or take complete control of an affected system. These issues are caused by input validation and buffer overflow errors when handling malformed data, which could be exploited by attackers to execute arbitrary code by tricking a user into opening a malicious document.
Impact
- Remote Code Execution
- Security Restriction Bypass
System / Technologies affected
- Adobe Acrobat 3D
- Adobe Acrobat 8 Professional
- Adobe Acrobat 8 Standard
- Adobe Acrobat 8.x
- Adobe Reader 8.x
- Adobe Acrobat 7 Professional
- Adobe Acrobat 7 Standard
- Adobe Acrobat 7.x
- Adobe Reader 7.x
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Update to version 8.1.2. or 7.1.0
- Adobe Reader 7 and 8
http://www.adobe.com/go/getreader - Acrobat 8 on Windows
http://www.adobe.com/support/downloads/detail.jsp?ftpID=3849 - Acrobat 8 on Macintosh
http://www.adobe.com/support/downloads/detail.jsp?ftpID=3856 - Acrobat 3D version 8 on Windows
http://www.adobe.com/support/downloads/detail.jsp?ftpID=3850 - Adobe Reader 7.0 through 7.0.9
http://www.adobe.com/go/getreader - Acrobat 7 on Windows
http://www.adobe.com/support/downloads/product.jsp?product=1&platform=Windows - Acrobat 7 on Macintosh
http://www.adobe.com/support/downloads/product.jsp?product=1&platform=Macintosh
Vulnerability Identifier
- CVE-2008-0667
- CVE-2007-5666
- CVE-2007-5659
- CVE-2007-5663
- CVE-2008-0726
- CVE-2008-0655
- CVE-2008-2042
- CVE-2007-4768
Source
Related Link
Share with