CNET también está disponible en español.

Ir a español

Don't show this again

Christmas Gift Guide
Computers

Adobe Security Issue: Reader, Acrobat vulnerabilities exploited

Reports are surfacing surrounding a post that Adobe published to its Product Security Incident Response Team blog on Monday concerning news that hackers had discovered previously unknown vulnerabilities in the latest versions of the Reader and Acrobat sof

Reports are surfacing surrounding a post that Adobe published to its Product Security Incident Response Team blog on Monday concerning news that hackers had discovered previously unknown vulnerabilities in the latest versions of the Reader and Acrobat software.

From Adobe's PSIRT blog post:

A critical vulnerability exists in Adobe Reader and Acrobat 9.2 and earlier for Windows, Macintosh and UNIX operating systems. This vulnerability (CVE-2009-4324) could cause a crash and potentially allow an attacker to take control of the affected system.
Adobe has also released a temporary fix for users to mitigate the situation until an official patch is released:
Customers using Adobe Reader or Acrobat versions 9.2 or 8.1.7 can utilize the JavaScript Blacklist Framework to prevent this vulnerability. Please refer to the TechNote for more information.

Customers who are not able to utilize the JavaScript Blacklist functionality can mitigate the issue by disabling JavaScript in Adobe Reader and Acrobat using the instructions below:

  1. Launch Acrobat or Adobe Reader.
  2. Select Edit>Preferences
  3. Select the JavaScript Category
  4. Uncheck the 'Enable Acrobat JavaScript' option
  5. Click OK


Be sure to check us out on Twitter and the CNET Mac forums.
Do you have questions, issues, or stories you would like to see on MacFixIt? Email Us.