Adobe warns of Acrobat flaw
Published: 18 Aug 2005 09:30 BST
A security flaw in Adobe Systems' popular Acrobat and Reader applications could be used to shut down or hijack vulnerable PCs.
By crafting a malicious PDF file, a remote attacker could cause the applications to crash or possibly commandeer the target computer, Adobe said in a security advisory published on Tuesday. The San Jose, California-based software maker has updates available to fix the problem.
The security issue affects Adobe Reader for Windows, Mac OS, Linux and Solaris and Adobe Acrobat for Windows and Mac OS, Adobe said. Security monitoring company Secunia rates the issue "highly critical" according to an advisory posted Tuesday.
The vulnerability is a buffer overflow problem within a core application plug-in that is part of Adobe Acrobat and Adobe Reader, the company said. Adobe itself discovered the error, according to the advisory.
Buffer overflows are a commonly exploited security problem. They occur when a program allows data to be written beyond the allocated end of a buffer in memory. A computer can be made to execute potentially malicious code by feeding in extra data that is designed to flood over the buffer.
Did you find this article useful?
49 out of 106 people found this useful
Digg
Slashdot
Del.ici.ous
Stumble
Reddit
Full Talkback thread
1 comment
