All the latest UK technology news, reviews and analysis

Adobe admits to flaw in all versions of Reader

by Iain Thomson

More from this author

30 Apr 2009

Be the first to comment

  • Tweet this
Adobe
Adobe has reported yet more flaws in its software

Adobe has issued a security alert about a serious flaw in all shipping versions of its Reader software, affecting PC, Apple and Unix versions.

The flaw, which came to light yesterday, concerns Reader's execution of JavaScript, and allows attackers to run code on targeted systems or crash the application.

Further reading

The US Computer Emergency Response Team has also issued a security advisory on the problem, which occurs in the 'getAnnots' JavaScript function.

"All currently supported shipping versions of Adobe Reader and Acrobat (Adobe Reader and Acrobat 9.1, 8.1.4, and 7.1.1 and earlier versions) are vulnerable to this issue," said Adobe in a blog post.

"Adobe plans to provide updates for all supported versions for all platforms (Windows, Macintosh and Unix) to resolve this issue."

The company has given no timeline for the release of a patch, but has said that no exploits have yet been seen in the wild.

The announcement is embarrassing for Adobe, coming after a series of flaws revealed last month. Some security experts are even recommending that users switch to free, alternative document readers.

"We have said it before but it is worth repeating: use an alternative to Adobe Acrobat Reader," said Patrik Runald, a security response manager at F -Secure, in a blog post.

"We won't recommend any reader over another, as it would be better if people use a wide variety of them. A list of readers can be found at PDFreaders.org. Others are Foxit and CutePDF."

Do you agree?

Add your comment
 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.
Submit your comment

Latest stories from Software

iconcool

IconCool Studio 7.40

Related white papers

Related articles

Related jobs

Today's top stories

Microsoft Windows 8 start screen

Microsoft turns SkyDrive into cloud computing storage tool for Windows 8

PlayBook BlackBerry 2.0 update from Research in Motion

Research in Motion confirms BlackBerry PlayBook 2.0 software update available

Fujitsu Primergy TX120 S3 review - tower

Fujitsu Primergy TX120 S3 review

Poll

IT priorities for 2012

What is the most important IT priority for your company this year?

98%

0%

1%

0%

1%

Features

V3 reporter Dan Worth

World-changing CERN experiments highlight humanity’s intrinsic curiosity

V3 and The INQUIRER editor Madeline Bennett

BBC and Sky News show tough love with Twitter policies

V3's Rosalie Marshall

World indulges in a Facebook facts fest as firm prepares to float

facebook-new

Top five most interesting figures from Facebook’s IPO

More features

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Case studies and reports

Accurev

Top 5 software development challenges

This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes

Talend

Rubbish in, rubbish enterprise

Why good data management at all levels is essential in the modern business (video, 6mins)

Technology jobs

Software Design Architect (Windows Database Application)

Software Design Architect (Windows Database Application...

Lead Java Developer - Mobile- Digital- Amsterdam

Lead Java Developer - Fast growing, young and international...

Graduate Software Support Engineer

Job Specification Graduate Support Engineer...

c# or asp.net Software Developer

Job Specification For: Software Developer...

To send to more than one email address, simply separate each address with a comma.