Adobe Fixes 42 Flaws in Reader and Flash

Adobe’s quarterly security update includes fixes for 29 flaws in Reader and 13 in Flash.  The release marks the first update for Reader X, an upgraded version of the PDF Reader that includes a sandboxing feature in the Windows version to protect users’ systems from some attacks.

In computer security, a sandbox is a security mechanism for separating running programs. It is often used to execute untested code, or untrusted programs from unverified third-parties, suppliers and untrusted users (Source: Wikipedia).

Most of the flaws in Reader are rated critical and two could allow cross-site scripting (XSS) attacks.  The updates bring Reader to versions 8.2.6, 9.4.2 and 10.0.1 for Windows and Mac OS X.  An update for Linux is expected to be available on February 28.  Flash is now at version 10.2.152.26 for Windows, Mac OS X, Linux and Solaris.

Users can download the recent versions from Adobe or through the software update tools in Reader or Flash.

Read the Adobe security bulletin.

Advertisements

About MIT
IT Security Awareness Consultant and Communications Specialist at MIT

Comments are closed.

%d bloggers like this: