Site Archives Reader

Critical Adobe Reader And Acrobat JavaScript Vulnerability

Posted on April 30th, 2009

GSA Reference Number: AD090430-01

Simply Put: All versions of Adobe Reader and Adobe Acrobat, on all operating systems, are affected by a Critical JavaScript Vulnerability. Currently, Adobe has not released a patch for this issue. Gladiator recommends disabling JavaScript in Adobe Reader and Adobe Acrobat to help mitigate the issue.

Critical Adobe Patch Released

Posted on March 11th, 2009

GSA Reference Number: AD090311-01

Replaces GSA Reference Number: AD090220-01

Simply Put: Adobe Acrobat 9 and Reader 9 and earlier versions contain a critical vulnerability that allows arbitrary code execution.  This issue is currently being exploited.  Adobe has released a patch for Acrobat 9 and Reader 9.  However, earlier versions of the product remain unpatched.  Gladiator recommends upgrading all Adobe installations to version 9.1 if possible.

New Adobe Acrobat and Reader Vulnerability

Posted on February 20th, 2009

GSA Reference Number: AD090220-01

Simply Put: Adobe Acrobat 9 and Reader 9 and earlier versions contain an unpatched critical vulnerability that allows arbitrary code execution.  Adobe has released an advisory on this issue, but a patch will not be released until March 11th.  A workaround has been published that will prevent code execution, but the application will still crash.