Adobe to fix Reader hole unveiled at Black Hat

ronjor · Aug 5, 2010

by Elinor Mills

Adobe said Thursday that it will release an emergency fix the week of August 16 for a critical hole in Reader that was publicly disclosed at the Black Hat conference last week.

The flaw, which could be exploited to take control of a computer, is related to the way Adobe's PDF (portable document format) reader software handles fonts, said Charlie Miller, principal analyst at Independent Security Evaluators. He disclosed the hole in his presentation on a tool that can be used to figure out the underlying bugs to software crashes, he said.
Click to expand...

http://news.cnet.com/8301-27080_3-20012817-245.html

JRViejo · Aug 17, 2010

Company knew of critical flaw before Black Hat, says researcher

Adobe said today that it would patch a critical Reader vulnerability on Thursday.

Two weeks ago, Adobe had promised to fix the flaw during the week of Aug. 16 with an emergency, or "out-of-band" security update, but had not slated a specific date.

Computerworld had pegged the likely release date as Aug. 17 based on past Adobe practice of issuing many of its security updates on Tuesdays.
Click to expand...

Adobe to patch Reader zero-day bug Thursday by Gregg Keizer

ronjor · Aug 19, 2010

Security updates available for Adobe Reader and Acrobat

Release date: August 19, 2010

Vulnerability identifier: APSB10-17

CVE numbers: CVE-2010-2862, CVE-2010-1240

Platform: All Platforms

Adobe recommends users of Adobe Reader 9.3.3 and earlier versions for Windows, Macintosh and UNIX update to Adobe Reader 9.3.4. (For Adobe Reader users on Windows and Macintosh, who cannot update to Adobe Reader 9.3.4, Adobe has provided the Adobe Reader 8.2.4 update.) Adobe recommends users of Adobe Acrobat 9.3.3 and earlier versions for Windows and Macintosh update to Adobe Acrobat 9.3.4. Adobe recommends users of Adobe Acrobat 8.2.3 and earlier versions for Windows and Macintosh update to Adobe Acrobat 8.2.4.
Click to expand...

http://www.adobe.com/support/security/bulletins/apsb10-17.html

FanJ · Aug 19, 2010

Thanks Ron !

Got my update using:
fxp://fxp.adobe.com/pub/adobe/reader/win/9.x/9.3.4/misc/
AdbeRdrUpd934_all_incr.msp

(change fxp into the obvious one )

Log in or Sign up

Adobe to fix Reader hole unveiled at Black Hat

ronjor Global Moderator

JRViejo Super Moderator

ronjor Global Moderator

FanJ Updates Team

Log in or Sign up

Adobe to fix Reader hole unveiled at Black Hat

ronjor Global Moderator

JRViejo Super Moderator

ronjor Global Moderator

FanJ Updates Team

Useful Searches