Zero-day PDF Bug – Patched

by Lee

Adobe release a patch today from a critical vulnerability in its PDF editing and viewing software.

“Today, we posted the Adobe Reader 9.1 and Acrobat 9.1 update, which resolves the recent JBIG2 security issue, including the ‘no-click’ variant of the vulnerability,” said David Lenoe, Adobe’s security program manager.

The ‘no-click’ variant does not rely on a user to open a malformed PDF file. It has been demonstrated that the flaw can be exploited just by letting Windows Explorer read the file automatically such as its title.

Source: COMPUTERWORLD



About the Author

Lee is a computer enthusiast and technology writer.

Comments (0)

Comments are closed.