Advertisement
Promo

Security threats Toolkit

Adobe patches Mac security flaws

Joris Evers CNET News

Published: 29 Jun 2005 13:00 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Adobe has updated its Adobe Reader and Adobe Acrobat for Apple's Mac OS to version 7.0.2. The updates fix two vulnerabilities. The first flaw lies in the way the applications process JavaScript tags embedded in PDF files, according to Adobe. An attacker could launch executable programs on the victim's system by crafting a malicious PDF file. The attacker would have to know the exact location of the executable, Adobe said in an advisory released on Monday.

The second flaw is in the updater for Acrobat and Reader. Folder permissions in Safari Frameworks are elevated when downloading, which could be exploited by an attacker, Adobe said in a second advisory. Safari is Apple's Web browser. Security researchers with the French Security Incident Response Team rate the issues "medium" risk, which means they could be exploited remotely and locally, leading to a denial of service or an escalation of privileges.

  • Email
  • Trackback
  • Clip Link
  • Print friendlyPrint with EPSON

Did you find this article useful?
80 out of 162 people found this useful


In association with HP

Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Security threats


Company/Topic Alerts

Create a new alert from the list below:












Related BlackBerry Resources

Protecting the BlackBerry Device Platform Against Malware

BlackBerry Devices with Bluetooth - Security Overview

BlackBerry Enterprise Server IT Policy

BlackBerry Enterprise Solution - Security Technical Overview

BlackBerry Enterprise Solution and RSA SecurID

CIO's Guide to Mobile Security

See All White Papers

Video icon

Video

Sentry Posts Blog

McKinnon lawyers seek judicial review

Lawyers seeking a judicial review for Nasa hacker Gary McKinnon lodged fresh evidence of his psychiatric state at the High Court on Thursday. Karen Todner, McKinnon's solicitor,... More

1 comment

Beware of keeping your head in the clo...

Information security professionals can look forward to a deepening appreciation for their skills as security continues to be recognised as an essential element for doing business in... More

1 comment

Civil liberties groups attack file-sha...

Civil liberties and digital rights organisations have strongly criticised Lord Mandelson's Digital Economy Bill. Liberty said in a position paper on Tuesday that the bill, part of... More

Post a comment


Skip Sub Navigation Links to CNET Brand Links

Help

Become part of the ZDNet community.

ALL TOOLKITS

Blogs

Newsletters