New Vulnerability Affecting Adobe Acrobat and Adobe Reader on Microsoft Windows and Apple Mac OS X Could Allow Personal Computers to be Compromised. Immediate Action Required.

Wednesday, June 10, 2009

A new critical security vulnerability affecting versions of Adobe Reader and Adobe Acrobat could allow personal computers to be compromised if a user opens a specially crafted Adobe PDF file. CSSD recommends all Windows and Macintosh users upgrade to the latest versions of Adobe Acrobat and Adobe Reader (version 9.1.2, 8.1.6, or 7.1.3) to address this vulnerability.

Update files can be downloaded and installed from the following Web pages:

• Adobe Reader for Windows:
  http://www.adobe.com/support/downloads/product.jsp?product=10&platform=Windows
• Adobe Reader for Macintosh:
  http://www.adobe.com/support/downloads/product.jsp?product=10&platform=Macintosh
• Adobe Acrobat Standard, Pro and Pro Extended for Windows:
  http://www.adobe.com/support/downloads/product.jsp?product=1&platform=Windows
• Adobe Acrobat 3D for Windows:
  http://www.adobe.com/support/downloads/product.jsp?product=112&platform=Windows
• Adobe Acrobat Pro for Macintosh:
  http://www.adobe.com/support/downloads/product.jsp?product=1&platform=Macintosh

If the required upgrade is not completed, an attacker who successfully exploits this vulnerability could perform a number of actions, including gaining control of an affected computer and executing arbitrary code.

Please contact the Technology Help Desk at 412 624-HELP [4357] if you have any questions or need assistance.

View information for: