Adobe patches security hole in Reader, Acrobat

June 22, 2005


Last Wednesday, Adobe Systems acknowledged a vulnerability in both Adobe Reader and Acrobat that could be exploited using malware to release sensitive system information. Under certain circumstances, it is possible to discover the existence of local files on an end-user system using XML scripts.

The problem affects versions 7.0-7.0.1, and is located within the Adobe Reader control. According to Adobe's Support Knowledgebase, the impact of the flaw is minimized because attackers would need to know complete filenames and paths in advance in order to exploit the vulnerability.

The good news is that Adobe is, as always, on the case. It has already released a 7.0.2 patch for Windows versions of Reader and Acrobat, with a Mac version currently in development. Until that update is available, the Knowledgebase recommends that Mac users of the affected software temporarily disable Acrobat JavaScript to protect their systems (In Acrobat or Reader, choose Adobe > Preferences > JavaScript and deselect Enable Acrobat JavaScript).

The available patches can be downloaded from the Adobe web site.

PDF In-Depth Free Product Trials Ubiquitous PDF

Debenu Quick PDF Library

Get products to market faster with this amazing PDF developer SDK. Over 900 functions and an equally...

Download free demo

Five visions of a PDF Day

In the world of PDFs or as we like to say Planet (of) PDF, a year isn't a real PDF year without an intense few days of industry knowledge sharing.

May 15, 2018
Platinum Sponsor

Search Planet PDF
more searching options...
Planet PDF Newsletter
Most Popular Articles
Featured Product

Debenu PDF Aerialist

The ultimate plug-in for Adobe Acrobat. Advanced splitting, merging, stamping, bookmarking, and link control. Take Acrobat to the next level.


Adding a PDF Stamp Comment

OK, so you want to stamp your document. Maybe you need to give reviewers some advice about the document's status or sensitivity. This tip from author Ted Padova demonstrates how to add stamps with the Stamp Tool along with related comments.