-
-
A JavaScript Buffer Overflow in Adobe Acrobat, Acrobat 3D & Reader allowed remote attacker to execute arbitrary code. The code will run with the privileges of the target user opening the PDF document. Excerpt from iDefense Public Advisory;
Adobe Reader and Acrobat implement a version of JavaScript in the EScript.api plug-in which is based on the reference implementation used in Mozilla products. One of the methods exposed allows direct control over low level features of the object, which in turn allows execution of arbitrary code.
Workaround
Disabled Adobe Reader & Acrobat JavaScript. Perform Update ↓
Update -Adobe Acrobat & Reader version 8.1.2
Adobe released version 8.1.2 of Adobe Reader, Acrobat & Acrobat 3D to address
these vulnerabilities.- Adobe Reader 7 and 8 users update to Adobe Reader 8.1.2
- Acrobat 8 users on Windows update to Acrobat 8.1.2
- Acrobat 8 users on Macintosh update to Acrobat 8.1.2
- Acrobat 3D version 8 users on Windows update to Acrobat 3D version 8.1.2
These vulnerabilities were discovered by Greg MacManus of VeriSign iDefense Labs.
-
- February 9, 2008 at 2:35 pm
- March 4, 2008 at 6:00 pm
- 0.3
- url
-
-
-
Firefox 2.0.0.12 Security Update fixes 7 Vulnerability & 3 critical patch (memory corruption, JavaScript Engine Crashes).
Read the rest of this entry -
- February 8, 2008 at 3:45 pm
- February 8, 2008 at 5:09 pm
- 0.3
- url
-
-
-
Popular Adobe Photoshop Brushes from deviantART resources for January 2008.
Read the rest of this entry -
- February 7, 2008 at 3:08 pm
- February 15, 2008 at 6:34 am
- 0.3
- url
-
-
About
-
Hi, my name is 
